CVE-2017-7533

HIGH IN THE WILD

Linux Kernel <4.12.4 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2017-7533 has been observed exploited in the wild (reported by InTheWild.io). EIP tracks 1 public exploit from researchers including Jeremy Huang.

AI-analyzed exploit summary This exploit demonstrates a heap overflow vulnerability in the Linux kernel's inotify subsystem (CVE-2017-7533). It triggers the bug by rapidly renaming and opening files to corrupt kernel memory, potentially allowing privilege escalation.

Description

Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename functions.

Exploits (1)

exploitdb WORKING POC
by Jeremy Huang · clocallinux_x86-64
https://www.exploit-db.com/exploits/44302

This exploit demonstrates a heap overflow vulnerability in the Linux kernel's inotify subsystem (CVE-2017-7533). It triggers the bug by rapidly renaming and opening files to corrupt kernel memory, potentially allowing privilege escalation.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Racy
Target: Linux kernel versions before 4.13.8 (specifically tested on Debian 8 with kernel 3.16.39)
No auth needed
Prerequisites: Local access to the system · Ability to create files and directories
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (20)

Core 20
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2017/dsa-3927
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://patchwork.kernel.org/patch/9755757/
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1468283
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100123
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2669
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2473
Mailing List, Patch, Third Party Advisory x_refsource_misc
http://openwall.com/lists/oss-security/2017/08/03/2
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2585
Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://patchwork.kernel.org/patch/9755753/
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2017/dsa-3945
Third Party Advisory x_refsource_confirm
https://source.android.com/security/bulletin/2017-12-01
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039075
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2770
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2869
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2019/06/27/7
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2019/06/28/1
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2019/06/28/2

Scores

CVSS v3 7.0
EPSS 0.0942
EPSS Percentile 93.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

InTheWild.io 2017-08-01
CWE
CWE-362
Status published
Products (2)
linux/linux_kernel 3.14 - 3.16.47
n/a/Linux kernel through 4.12.4 Linux kernel through 4.12.4
Published Aug 05, 2017
Tracked Since Feb 18, 2026