all InfoSec news
Ther OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation
May 10, 2023, midnight |
Datadog Security Labs securitylabs.datadoghq.com
Introduction
On March 22, 2023, a vulnerability in the Linux kernel was publicly disclosed. It is a local privilege escalation vulnerability, allowing an unprivileged user to escalate their privileges to the root user.
Key points and observations:
- January 27, 2023: Vulnerability is patched on the Linux source tree
- March 22, 2023: Vulnerability is publicly disclosed on the NIST NVD as CVE-2023-0386
- May 4, 2023: Proof-of-concept (PoC) exploits appear on GitHub
The vulnerability, dubbed CVE-2023-0386, is trivial to exploit and applicable …
cve detection escalation introduction january kernel key key points linux linux kernel local local privilege escalation march privilege privilege escalation privileges remediation root vulnerability
More from securitylabs.datadoghq.com / Datadog Security Labs
An analysis of a TeamTNT doppelgänger
2 months, 4 weeks ago |
securitylabs.datadoghq.com
Highlights from Datadog Security Labs in 2023
3 months, 3 weeks ago |
securitylabs.datadoghq.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineer - Vulnerability Management
@ Starling Bank | Southampton, England, United Kingdom
Manager Cybersecurity
@ Sia Partners | Rotterdam, Netherlands
Compliance Analyst
@ SiteMinder | Manila
Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447
@ Allen Integrated Solutions | Chantilly, Virginia, United States
Enterprise Cyber Security Analyst – Advisory and Consulting
@ Ford Motor Company | Mexico City, MEX, Mexico