CVE-2015-1328

🗓️ 28 Nov 2016 03:01:00Reported by canonicalType

The overlayfs in Linux package before 3.19.0-21.21 in Ubuntu does not properly check permissions for file creation in the upper filesystem directory, allowing local users to obtain root access

Reporter	Title	Published	Views	Family All 95
0day.today	Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root Exploit	17 Jun 201500:00	–	zdt
0day.today	Overlayfs Privilege Escalation Exploit	2 Nov 201600:00	–	zdt
0day.today	Linux Kernel (Ubuntu / Fedora / Redhat) - 'Overlayfs' Privilege Escalation Exploit	3 Nov 201600:00	–	zdt
GithubExploit	Exploit for CVE-2015-1328	7 Feb 202210:52	–	githubexploit
GithubExploit	Exploit for CVE-2015-1328	1 Nov 202514:49	–	githubexploit
GithubExploit	Exploit for CVE-2015-1328	7 Feb 202210:52	–	githubexploit
GithubExploit	Exploit for CVE-2015-1328	7 Feb 202210:52	–	githubexploit
Cloud Foundry	CVE-2015-1328 - overlayfs privilege escalation \| Cloud Foundry	17 Jun 201500:00	–	cloudfoundry
Circl	CVE-2015-1328	16 Jun 201500:00	–	circl
CNVD	Ubuntu Linux kernel overlayfs filesystem local elevation of privilege vulnerability	22 Jun 201500:00	–	cnvd

NVD

Node

canonical ubuntu_linuxRange≤15.04

Node

linux linux_kernelRange≤3.19

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2015-1328
exploit-db	www.exploit-db.com/exploits/40688/
exploit-db	www.exploit-db.com/exploits/37292/
people	www.people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1328.html
seclists	www.seclists.org/oss-sec/2015/q2/717
securityfocus	www.securityfocus.com/bid/75206

06 May 2026 22:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 27.2

CVSS 37.8

EPSS0.89572

CWE-264