CVE-2023-0386

CVE Database · CVE-2023-0386

CVE-2023-0386

· HIGHAnalyzed

CVSS v3.1

7.8

EPSS

7.88%

Published

Mar 22, 2023

Modified

Nov 4, 2025

CISA Known Exploited Vulnerability

Added: 2025-06-17 · Due: 2025-07-08

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Public PoC / Exploit (9)

All weaponized →

TrickestTrickest PoC index GitHub PoCxkaneiki/CVE-2023-0386★419 GitHub PoCchenaotian/CVE-2023-0386★123 GitHub PoCsxlmnwb/CVE-2023-0386★51 GitHub PoCFanxiaoyao66/CVE-2023-0386★21 GitHub PoCpuckiestyle/CVE-2023-0386★16 GitHub PoCveritas501/CVE-2023-0386★10 GitHub PoCSatheesh575555/linux-4.19.72_CVE-2023-0386★4 GitHub PoCP4x1s/CVE-2023-0386★4

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-282

Affected Products (21)

debian · debian_linuxvulnerable

netapp · h300s_firmwarevulnerable

netapp · h300s

netapp · h500s_firmwarevulnerable

netapp · h500s

netapp · h700s_firmwarevulnerable

netapp · h700s