all InfoSec news
Ther OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation
May 10, 2023, midnight |
Datadog Security Labs securitylabs.datadoghq.com
Introduction
On March 22, 2023, a vulnerability in the Linux kernel was publicly disclosed. It is a local privilege escalation vulnerability, allowing an unprivileged user to escalate their privileges to the root user.
Key points and observations:
- January 27, 2023: Vulnerability is patched on the Linux source tree
- March 22, 2023: Vulnerability is publicly disclosed on the NIST NVD as CVE-2023-0386
- May 4, 2023: Proof-of-concept (PoC) exploits appear on GitHub
The vulnerability, dubbed CVE-2023-0386, is trivial to exploit and applicable …
cve detection escalation introduction january kernel key key points linux linux kernel local local privilege escalation march privilege privilege escalation privileges remediation root vulnerability
More from securitylabs.datadoghq.com / Datadog Security Labs
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC