Lucene search
+L

PT-2022-6438 · Linux +2 · Linux Kernel +2

🗓️ 01 Apr 2022 00:00:00Reported by Positive TechnologiesType 
ptsecurity
 ptsecurity
🔗 dbugs.ptsecurity.com👁 7 Views

Local user can escalate privileges due to unauthorized access in the Linux kernel Overlay filesystem by copying from a nosuid mount.

Related
Refs
ReporterTitlePublishedViews
Family
bdu_fstec
The vulnerability of the Linux operating system’s driver/drivers/hid/hid-bigbenff.c code, related to writing beyond buffer boundaries in memory, allows an attacker to cause a service failure or increase their privileges.
13 Oct 202300:00
bdu_fstec
bdu_fstec
The vulnerability of the NILFS file system driver in Linux operating systems allows attackers to access confidential data, compromise its integrity, and cause service failures.
11 Nov 202300:00
bdu_fstec
bdu_fstec
The vulnerability of the log_replay function in the fs/ntfs3/fslog.c component of the Linux operating system allows a hacker to gain access to confidential data and also trigger a service failure.
26 Dec 202300:00
bdu_fstec
bdu_fstec
The vulnerability in the net/netfilter/nf_tables_api.c component of the Linux operating system allows a hacker to cause a service failure.
26 Dec 202300:00
bdu_fstec
bdu_fstec
The vulnerability of the sess_free_buffer() function in the fs/cifs/sess.c module of the SMB file system in the Linux operating system allows a hacker to cause a service failure.
16 May 202400:00
bdu_fstec
bdu_fstec
The vulnerability of the function io_files_update_with_index_alloc() in the fs/io_uring.c module of the io_uring component of the Linux operating system allows a attacker to cause a service failure.
16 May 202400:00
bdu_fstec
bdu_fstec
The vulnerability of the macvlan_handle_frame() function in the drivers/net/macvlan.c file of the Linux kernel’s networking component allows a hacker to cause a service failure.
28 May 202400:00
bdu_fstec
bdu_fstec
The vulnerability of the damon_sysfs_add_target() function in the mm/daemon/sysfs.c file, a memory management subsystem of the Linux operating system, allows a hacker to trigger a service failure.
28 May 202400:00
bdu_fstec
bdu_fstec
The vulnerability of the io_uring subsystem in the Linux operating system allows a hacker to increase their privileges.
28 May 202400:00
bdu_fstec
bdu_fstec
The vulnerability of the psi_trigger_poll() function in the kernel/sched/psi.c module of the PSI resource management system in Linux’s operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
28 May 202400:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

14 Aug 2023 00:00Current
7High risk
Vulners AI Score7
CVSS 3.17.8 - 9.8
CVSS 29
CVSS 38.8
CVSS 48.6
EPSS0.67994
SSVC
7