CVE-2023-0386

🗓️ 22 Mar 2023 00:00:00Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 12 Media mentions👁 469 Views

A flaw in the Linux kernel's OverlayFS allows local user privilege escalation

Reporter	Title	Published	Views	Family All 448
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Linux Kernel might affect IBM Spectrum Copy Data Management (CVE-2022-1280, CVE-2023-0386, CVE-2022-4269, CVE-2022-2873, CVE-2022-4378)	16 Jun 202319:23	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	26 Apr 202315:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache Commons, Tomcat, Go, libcurl, OpenSSL, Python, Node.js, and Linux can affect IBM Spectrum Protect Plus.	20 Jun 202316:49	–	ibm
GithubExploit	Exploit for Improper Ownership Management in Debian Debian_Linux	8 May 202301:53	–	githubexploit
GithubExploit	lpe-toolkit	21 May 202619:33	–	githubexploit
GithubExploit	Exploit for Improper Ownership Management in Debian Debian_Linux	23 Apr 202611:49	–	githubexploit
GithubExploit	Exploit for Improper Ownership Management in Debian Debian_Linux	28 Jun 202307:49	–	githubexploit
GithubExploit	Exploit for CVE-2022-21449	20 Apr 202219:13	–	githubexploit
GithubExploit	Exploit for Improper Ownership Management in Debian Debian_Linux	6 May 202306:07	–	githubexploit
GithubExploit	Exploit for Improper Ownership Management in Debian Debian_Linux	23 Dec 202311:01	–	githubexploit

NVD

Vulners

Node

debian debian_linuxMatch10.0

Node

netapp h300s_firmwareMatch-

AND

netapp h300sMatch-

Node

netapp h500s_firmwareMatch-

AND

netapp h500sMatch-

Node

netapp h700s_firmwareMatch-

AND

netapp h700sMatch-

Node

netapp h410s_firmwareMatch-

AND

netapp h410sMatch-

Node

netapp h410c_firmwareMatch-

AND

netapp h410cMatch-

Node

canonical ubuntu_linuxMatch18.04lts

canonical ubuntu_linuxMatch20.04lts

canonical ubuntu_linuxMatch22.04lts

Node

linux linux_kernelRange5.11–5.15.91

linux linux_kernelRange5.16–6.1.9

linux linux_kernelMatch6.2rc1

linux linux_kernelMatch6.2rc2

linux linux_kernelMatch6.2rc3

linux linux_kernelMatch6.2rc4

linux linux_kernelMatch6.2rc5

[
  {
    "vendor": "n/a",
    "product": "Kernel",
    "versions": [
      {
        "version": "Linux kernel 6.2-rc6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2023/06/msg00008.html
debian	www.debian.org/security/2023/dsa-5402
lists	www.lists.debian.org/debian-lts-announce/2024/06/msg00020.html
security	www.security.netapp.com/advisory/ntap-20230420-0004/
git	www.git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/
packetstormsecurity	www.packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

04 Nov 2025 16:47Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.8

EPSS0.50619

SSVC