Bǎnicǎ Dragoș-Marius

1 exploit Active since Mar 2023
CVE-2023-0386 NOMISEC HIGH WORKING POC
Local Privilege Escalation via CVE-2023-0386
A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.
CVSS 7.8