[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-3493":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":207,"aliases":241,"duplicate_of":9,"upstream":242,"downstream":243,"duplicates":256,"related":257,"reserved_at":9,"published_at":258,"modified_at":259,"state":260,"summary":261,"references_raw":270,"kevs":308,"epss":319,"epss_history":322,"metrics":550,"affected":566},"CVE-2021-3493","The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow unprivileged overlay mounts, an attacker could use this to gain elevated privileges.",null,[11,20],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-863","Incorrect Authorization","The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.","weakness","Incomplete","Class","High",[],{"_key":21,"id":21,"name":22,"description":23,"type":15,"status":24,"abstraction":25,"likelihood_of_exploit":9,"capec":26},"CWE-270","Privilege Context Switching Error","The product does not properly manage privileges while it is switching between different contexts that have different privileges or spheres of control.","Draft","Base",[27,95,178],{"id":28,"name":29,"techniques":30},"CAPEC-17","Using Malicious Files",[31,75],{"id":32,"name":33,"tactics":34,"countermeasures":50},"T1574.005","Executable Installer File Permissions Weakness",[35,38,41,44,47],{"id":36,"name":37},"TA0110","Persistence",{"id":39,"name":40},"TA0111","Privilege Escalation",{"id":42,"name":43},"TA0030","Defense Evasion",{"id":45,"name":46},"TA0005","Stealth",{"id":48,"name":49},"TA0104","Execution",[51,56,60,65,70],{"id":52,"name":53,"tactic":54},"D3-SWI","Software Inventory",{"name":55},"Model",{"id":57,"name":58,"tactic":59},"D3-AVE","Asset Vulnerability Enumeration",{"name":55},{"id":61,"name":62,"tactic":63},"D3-SBV","Service Binary Verification",{"name":64},"Detect",{"id":66,"name":67,"tactic":68},"D3-SU","Software Update",{"name":69},"Harden",{"id":71,"name":72,"tactic":73},"D3-RS","Restore Software",{"name":74},"Restore",{"id":76,"name":77,"tactics":78,"countermeasures":84},"T1574.010","Services File Permissions Weakness",[79,80,81,82,83],{"id":36,"name":37},{"id":39,"name":40},{"id":42,"name":43},{"id":45,"name":46},{"id":48,"name":49},[85,87,89,91,93],{"id":52,"name":53,"tactic":86},{"name":55},{"id":57,"name":58,"tactic":88},{"name":55},{"id":61,"name":62,"tactic":90},{"name":64},{"id":66,"name":67,"tactic":92},{"name":69},{"id":71,"name":72,"tactic":94},{"name":74},{"id":96,"name":97,"techniques":98},"CAPEC-30","Hijacking a Privileged Thread of Execution",[99],{"id":100,"name":101,"tactics":102,"countermeasures":106},"T1055.003","Thread Execution Hijacking",[103,104,105],{"id":42,"name":43},{"id":45,"name":46},{"id":39,"name":40},[107,111,115,119,123,127,132,137,141,145,150,154,158,162,166,170,174],{"id":108,"name":109,"tactic":110},"D3-FA","File Analysis",{"name":64},{"id":112,"name":113,"tactic":114},"D3-FIM","File Integrity Monitoring",{"name":64},{"id":116,"name":117,"tactic":118},"D3-DA","Dynamic Analysis",{"name":64},{"id":120,"name":121,"tactic":122},"D3-EFA","Emulated File Analysis",{"name":64},{"id":124,"name":125,"tactic":126},"D3-SCA","System Call Analysis",{"name":64},{"id":128,"name":129,"tactic":130},"D3-FEV","File Eviction",{"name":131},"Evict",{"id":133,"name":134,"tactic":135},"D3-DF","Decoy File",{"name":136},"Deceive",{"id":138,"name":139,"tactic":140},"D3-FE","File Encryption",{"name":69},{"id":142,"name":143,"tactic":144},"D3-RF","Restore File",{"name":74},{"id":146,"name":147,"tactic":148},"D3-CF","Content Filtering",{"name":149},"Isolate",{"id":151,"name":152,"tactic":153},"D3-LFP","Local File Permissions",{"name":149},{"id":155,"name":156,"tactic":157},"D3-RFAM","Remote File Access Mediation",{"name":149},{"id":159,"name":160,"tactic":161},"D3-CQ","Content Quarantine",{"name":149},{"id":163,"name":164,"tactic":165},"D3-CM","Content Modification",{"name":149},{"id":167,"name":168,"tactic":169},"D3-EAL","Executable Allowlisting",{"name":149},{"id":171,"name":172,"tactic":173},"D3-EDL","Executable Denylisting",{"name":149},{"id":175,"name":176,"tactic":177},"D3-SCF","System Call Filtering",{"name":149},{"id":179,"name":180,"techniques":181},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[182,189,196],{"id":183,"name":184,"tactics":185,"countermeasures":188},"T1027.006","HTML Smuggling",[186,187],{"id":42,"name":43},{"id":45,"name":46},[],{"id":190,"name":191,"tactics":192,"countermeasures":195},"T1027.009","Embedded Payloads",[193,194],{"id":42,"name":43},{"id":45,"name":46},[],{"id":197,"name":198,"tactics":199,"countermeasures":202},"T1564.009","Resource Forking",[200,201],{"id":42,"name":43},{"id":45,"name":46},[203],{"id":204,"name":205,"tactic":206},"D3-FFV","File Format Verification",{"name":149},[208,217,221],{"_key":209,"name":210,"source":211,"url":212,"maturity":213,"reliability_score":214,"verified":215,"type":9,"platforms":216,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_86CE24D5E50B0137","Exploit Reference (packetstormsecurity.com)","reference","http://packetstormsecurity.com/files/162434/Kernel-Live-Patch-Security-Notice-LSN-0076-1.html","unknown",0.2,false,[],{"_key":218,"name":210,"source":211,"url":219,"maturity":213,"reliability_score":214,"verified":215,"type":9,"platforms":220,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_8695375610EEC3AE","http://packetstormsecurity.com/files/165151/Ubuntu-Overlayfs-Local-Privilege-Escalation.html",[],{"_key":222,"name":223,"source":224,"url":225,"maturity":226,"reliability_score":227,"verified":228,"type":229,"platforms":230,"requires_auth":215,"exploitdb":9,"metasploit":231},"MSF_EXPLOIT_LINUX_LOCAL_CVE_2021_3493_OVERLAYFS","2021 Ubuntu Overlayfs LPE","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/linux/local/cve_2021_3493_overlayfs.rb","weaponized",0.8333333333333334,true,"remote",[],{"fullname":232,"rank":233,"rank_name":234,"post_auth":215,"check":228,"notes":235},"exploit/linux/local/cve_2021_3493_overlayfs",500,"great",{"Stability":236,"SideEffects":237,"Reliability":239},[],[238],"artifacts-on-disk",[240],"repeatable-session",[],[],[244,246,248,250,252,254],{"_key":245},"DEBIAN-CVE-2021-3493",{"_key":247},"LSN-0076-1",{"_key":249},"UBUNTU-CVE-2021-3493",{"_key":251},"USN-4915-1",{"_key":253},"USN-4916-1",{"_key":255},"USN-4917-1",[],[],"2021-04-17T04:20:16.706Z","2025-10-21T23:25:48.908Z","Analyzed",{"cisa_kev":228,"cisa_ransomware":215,"cisa_vendor":262,"epss_severity":263,"epss_score":264,"severity":265,"severity_score":266,"severity_version":267,"severity_source":268,"severity_vector":269,"severity_status":260},"Linux","critical",0.79706,"high",8.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",[271,278,285,289,294,299,302],{"url":272,"sources":273,"tags":275},"https://ubuntu.com/security/notices/USN-4917-1",[268,274],"nvd",[276,277],"X Refsource MISC","Vendor Advisory",{"url":279,"sources":280,"tags":281},"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c03e2cda4a584cadc398e8f6641ca9988a39d52",[268,274],[276,282,283,284],"Mailing List","Patch","Third Party Advisory",{"url":286,"sources":287,"tags":288},"https://www.openwall.com/lists/oss-security/2021/04/16/1",[268,274],[276,282,284],{"url":212,"sources":290,"tags":291},[268,274],[276,292,284,293],"Exploit","VDB Entry",{"url":295,"sources":296,"tags":297},"http://packetstormsecurity.com/files/162866/Ubuntu-OverlayFS-Local-Privilege-Escalation.html",[268,274],[276,298,284,293],"Press/Media Coverage",{"url":219,"sources":300,"tags":301},[268,274],[276,292,284,293],{"url":303,"sources":304,"tags":305},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-3493",[268,274],[306,307],"Government Resource","US Government Resource",[309],{"source":310,"vendor":262,"product":311,"date_added":312,"vulnerability_name":313,"short_description":314,"required_action":315,"due_date":316,"known_ransomware_campaign_use":317,"notes":318,"exploitation_type":9},"cisa","Kernel","2022-10-20","Linux Kernel Privilege Escalation Vulnerability","The overlayfs stacking file system in Linux kernel does not properly validate the application of file capabilities against user namespaces, which could lead to privilege escalation.","Apply updates per vendor instructions.","2022-11-10","Unknown","https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c03e2cda4a584cadc398e8f6641ca9988a39d52; https://nvd.nist.gov/vuln/detail/CVE-2021-3493",{"date":320,"score":264,"percentile":321},"2026-06-03",0.99118,[323,327,330,333,336,339,341,343,346,348,350,352,354,356,358,362,364,366,370,373,375,378,380,382,384,386,389,391,395,398,400,404,407,409,412,414,416,420,423,425,428,430,433,436,438,440,442,445,447,449,452,455,457,461,465,468,471,473,476,480,482,484,487,490,492,494,496,498,500,502,504,506,508,510,512,514,516,518,520,522,524,527,530,533,535,537,540,543,545,547],{"date":324,"score":325,"percentile":326},"2025-11-04",0.7749,0.98931,{"date":328,"score":325,"percentile":329},"2025-11-05",0.98929,{"date":331,"score":325,"percentile":332},"2025-11-06",0.98928,{"date":334,"score":335,"percentile":326},"2025-11-07",0.77608,{"date":337,"score":335,"percentile":338},"2025-11-08",0.9893,{"date":340,"score":335,"percentile":329},"2025-11-09",{"date":342,"score":335,"percentile":332},"2025-11-10",{"date":344,"score":335,"percentile":345},"2025-11-11",0.98927,{"date":347,"score":335,"percentile":329},"2025-11-12",{"date":349,"score":335,"percentile":329},"2025-11-13",{"date":351,"score":335,"percentile":332},"2025-11-14",{"date":353,"score":335,"percentile":345},"2025-11-15",{"date":355,"score":335,"percentile":329},"2025-11-16",{"date":357,"score":335,"percentile":329},"2025-11-17",{"date":359,"score":360,"percentile":361},"2025-11-18",0.90849,0.99706,{"date":363,"score":360,"percentile":361},"2025-11-19",{"date":365,"score":360,"percentile":361},"2025-11-20",{"date":367,"score":368,"percentile":369},"2025-11-21",0.74187,0.9877,{"date":371,"score":368,"percentile":372},"2025-11-22",0.98768,{"date":374,"score":368,"percentile":372},"2025-11-23",{"date":376,"score":368,"percentile":377},"2025-11-24",0.98769,{"date":379,"score":368,"percentile":377},"2025-11-25",{"date":381,"score":368,"percentile":377},"2025-11-26",{"date":383,"score":368,"percentile":369},"2025-11-27",{"date":385,"score":368,"percentile":369},"2025-11-28",{"date":387,"score":368,"percentile":388},"2025-11-29",0.98771,{"date":390,"score":368,"percentile":388},"2025-11-30",{"date":392,"score":393,"percentile":394},"2025-12-01",0.77116,0.9892,{"date":396,"score":393,"percentile":397},"2025-12-02",0.98922,{"date":399,"score":393,"percentile":397},"2025-12-03",{"date":401,"score":402,"percentile":403},"2025-12-04",0.78246,0.98964,{"date":405,"score":402,"percentile":406},"2025-12-05",0.98966,{"date":408,"score":402,"percentile":403},"2025-12-06",{"date":410,"score":402,"percentile":411},"2025-12-07",0.98965,{"date":413,"score":402,"percentile":403},"2025-12-08",{"date":415,"score":402,"percentile":411},"2025-12-09",{"date":417,"score":418,"percentile":419},"2025-12-10",0.74577,0.98798,{"date":421,"score":402,"percentile":422},"2025-12-11",0.98968,{"date":424,"score":402,"percentile":422},"2025-12-12",{"date":426,"score":402,"percentile":427},"2025-12-13",0.98969,{"date":429,"score":402,"percentile":427},"2025-12-14",{"date":431,"score":402,"percentile":432},"2025-12-15",0.9897,{"date":434,"score":335,"percentile":435},"2025-12-16",0.98935,{"date":437,"score":335,"percentile":435},"2025-12-17",{"date":439,"score":335,"percentile":435},"2025-12-18",{"date":441,"score":335,"percentile":435},"2025-12-19",{"date":443,"score":335,"percentile":444},"2025-12-20",0.98936,{"date":446,"score":335,"percentile":444},"2025-12-21",{"date":448,"score":335,"percentile":444},"2025-12-22",{"date":450,"score":335,"percentile":451},"2025-12-23",0.98937,{"date":453,"score":335,"percentile":454},"2025-12-24",0.98938,{"date":456,"score":335,"percentile":454},"2025-12-25",{"date":458,"score":459,"percentile":460},"2025-12-26",0.76767,0.98899,{"date":462,"score":463,"percentile":464},"2025-12-27",0.75512,0.98852,{"date":466,"score":459,"percentile":467},"2025-12-28",0.989,{"date":469,"score":459,"percentile":470},"2025-12-29",0.98901,{"date":472,"score":459,"percentile":470},"2025-12-30",{"date":474,"score":459,"percentile":475},"2025-12-31",0.98902,{"date":477,"score":478,"percentile":479},"2026-01-01",0.75549,0.98863,{"date":481,"score":478,"percentile":479},"2026-01-02",{"date":483,"score":478,"percentile":479},"2026-01-03",{"date":485,"score":459,"percentile":486},"2026-01-04",0.98903,{"date":488,"score":459,"percentile":489},"2026-01-05",0.98904,{"date":491,"score":459,"percentile":486},"2026-01-06",{"date":493,"score":459,"percentile":475},"2026-01-07",{"date":495,"score":459,"percentile":486},"2026-01-08",{"date":497,"score":459,"percentile":489},"2026-01-09",{"date":499,"score":459,"percentile":489},"2026-01-10",{"date":501,"score":459,"percentile":486},"2026-01-11",{"date":503,"score":459,"percentile":475},"2026-01-12",{"date":505,"score":459,"percentile":475},"2026-01-13",{"date":507,"score":459,"percentile":489},"2026-01-14",{"date":509,"score":459,"percentile":486},"2026-01-15",{"date":511,"score":459,"percentile":489},"2026-01-16",{"date":513,"score":459,"percentile":489},"2026-01-17",{"date":515,"score":459,"percentile":486},"2026-01-18",{"date":517,"score":459,"percentile":489},"2026-01-19",{"date":519,"score":459,"percentile":489},"2026-01-20",{"date":521,"score":459,"percentile":486},"2026-01-21",{"date":523,"score":459,"percentile":489},"2026-01-22",{"date":525,"score":459,"percentile":526},"2026-01-23",0.98906,{"date":528,"score":459,"percentile":529},"2026-01-24",0.98905,{"date":531,"score":459,"percentile":532},"2026-01-25",0.98907,{"date":534,"score":459,"percentile":532},"2026-01-26",{"date":536,"score":459,"percentile":532},"2026-01-27",{"date":538,"score":459,"percentile":539},"2026-01-28",0.98908,{"date":541,"score":459,"percentile":542},"2026-01-29",0.9891,{"date":544,"score":459,"percentile":542},"2026-01-30",{"date":546,"score":459,"percentile":542},"2026-01-31",{"date":548,"score":478,"percentile":549},"2026-02-01",0.98865,[551,556],{"source":268,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":552,"cvss_v4_0":9},{"baseScore":266,"baseSeverity":553,"vectorString":269,"impactScore":554,"exploitabilityScore":555},"HIGH",10,5.1,{"source":274,"cvss_v2_0":557,"cvss_v3_0":9,"cvss_v3_1":561,"cvss_v4_0":9},{"baseScore":558,"baseSeverity":9,"vectorString":559,"impactScore":554,"exploitabilityScore":560},7.2,"AV:L/AC:L/Au:N/C:C/I:C/A:C",3.9,{"baseScore":562,"baseSeverity":553,"vectorString":563,"impactScore":564,"exploitabilityScore":565},7.8,"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,4.6,[567,586],{"ecosystem":9,"name":568,"vendor":569,"product":570,"cpe_part":571,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":572},"ubuntu linux","canonical","ubuntu_linux","o",[573,578,583],{"version":574,"is_range":228,"range_type":575,"version_start":9,"version_start_type":9,"version_end":576,"version_end_type":577,"fixed_in":9},"lt18.04","cpe","18.04","excluding",{"version":579,"is_range":228,"range_type":575,"version_start":580,"version_start_type":581,"version_end":582,"version_end_type":577,"fixed_in":9},"gte18.04.1_lt20.04","18.04.1","including","20.04",{"version":584,"is_range":228,"range_type":575,"version_start":9,"version_start_type":9,"version_end":585,"version_end_type":577,"fixed_in":9},"lt20.10","20.10",{"ecosystem":9,"name":587,"vendor":588,"product":589,"cpe_part":571,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":590},"linux kernel","ubuntu","linux_kernel",[591,595,599,603],{"version":592,"is_range":228,"range_type":268,"version_start":593,"version_start_type":581,"version_end":594,"version_end_type":577,"fixed_in":9},">= 5.8 kernel, \u003C 5.8.0-50.56","5.8 kernel","5.8.0-50.56",{"version":596,"is_range":228,"range_type":268,"version_start":597,"version_start_type":581,"version_end":598,"version_end_type":577,"fixed_in":9},">= 5.4 kernel, \u003C 5.4.0-72.80","5.4 kernel","5.4.0-72.80",{"version":600,"is_range":228,"range_type":268,"version_start":601,"version_start_type":581,"version_end":602,"version_end_type":577,"fixed_in":9},">= 4.15 kernel, \u003C 4.15.0-142.146","4.15 kernel","4.15.0-142.146",{"version":604,"is_range":228,"range_type":268,"version_start":605,"version_start_type":581,"version_end":606,"version_end_type":577,"fixed_in":9},">= 4.4 kernel, \u003C 4.4.0-209.241","4.4 kernel","4.4.0-209.241"]