[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-0386":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":124,"aliases":147,"duplicate_of":9,"upstream":148,"downstream":149,"duplicates":230,"related":231,"reserved_at":9,"published_at":247,"modified_at":248,"state":249,"summary":250,"references_raw":259,"kevs":296,"epss":307,"epss_history":310,"metrics":568,"affected":576},"CVE-2023-0386","A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.",null,[11,18],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],{"_key":19,"id":19,"name":20,"description":21,"type":22,"status":23,"abstraction":24,"likelihood_of_exploit":9,"capec":25},"CWE-282","Improper Ownership Management","The product assigns the wrong ownership, or does not properly verify the ownership, of an object or resource.","weakness","Draft","Class",[26,94],{"id":27,"name":28,"techniques":29},"CAPEC-17","Using Malicious Files",[30,74],{"id":31,"name":32,"tactics":33,"countermeasures":49},"T1574.005","Executable Installer File Permissions Weakness",[34,37,40,43,46],{"id":35,"name":36},"TA0110","Persistence",{"id":38,"name":39},"TA0111","Privilege Escalation",{"id":41,"name":42},"TA0030","Defense Evasion",{"id":44,"name":45},"TA0005","Stealth",{"id":47,"name":48},"TA0104","Execution",[50,55,59,64,69],{"id":51,"name":52,"tactic":53},"D3-SWI","Software Inventory",{"name":54},"Model",{"id":56,"name":57,"tactic":58},"D3-AVE","Asset Vulnerability Enumeration",{"name":54},{"id":60,"name":61,"tactic":62},"D3-SBV","Service Binary Verification",{"name":63},"Detect",{"id":65,"name":66,"tactic":67},"D3-SU","Software Update",{"name":68},"Harden",{"id":70,"name":71,"tactic":72},"D3-RS","Restore Software",{"name":73},"Restore",{"id":75,"name":76,"tactics":77,"countermeasures":83},"T1574.010","Services File Permissions Weakness",[78,79,80,81,82],{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},{"id":44,"name":45},{"id":47,"name":48},[84,86,88,90,92],{"id":51,"name":52,"tactic":85},{"name":54},{"id":56,"name":57,"tactic":87},{"name":54},{"id":60,"name":61,"tactic":89},{"name":63},{"id":65,"name":66,"tactic":91},{"name":68},{"id":70,"name":71,"tactic":93},{"name":73},{"id":95,"name":96,"techniques":97},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[98,105,112],{"id":99,"name":100,"tactics":101,"countermeasures":104},"T1027.006","HTML Smuggling",[102,103],{"id":41,"name":42},{"id":44,"name":45},[],{"id":106,"name":107,"tactics":108,"countermeasures":111},"T1027.009","Embedded Payloads",[109,110],{"id":41,"name":42},{"id":44,"name":45},[],{"id":113,"name":114,"tactics":115,"countermeasures":118},"T1564.009","Resource Forking",[116,117],{"id":41,"name":42},{"id":44,"name":45},[119],{"id":120,"name":121,"tactic":122},"D3-FFV","File Format Verification",{"name":123},"Isolate",[125],{"_key":126,"name":127,"source":128,"url":129,"maturity":130,"reliability_score":131,"verified":132,"type":133,"platforms":134,"requires_auth":135,"exploitdb":9,"metasploit":136},"MSF_EXPLOIT_LINUX_LOCAL_CVE_2023_0386_OVERLAYFS_PRIV_ESC","Local Privilege Escalation via CVE-2023-0386","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/linux/local/cve_2023_0386_overlayfs_priv_esc.rb","weaponized",1,true,"remote",[],false,{"fullname":137,"rank":138,"rank_name":139,"post_auth":135,"check":132,"notes":140},"exploit/linux/local/cve_2023_0386_overlayfs_priv_esc",600,"excellent",{"Stability":141,"SideEffects":143,"Reliability":145},[142],"crash-safe",[144],"artifacts-on-disk",[146],"repeatable-session",[],[],[150,152,154,156,158,160,162,164,166,168,170,172,174,176,178,180,182,184,186,188,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228],{"_key":151},"SUSE-SU-2023:2384-1",{"_key":153},"SUSE-SU-2023:2368-1",{"_key":155},"SUSE-SU-2023:2369-1",{"_key":157},"SUSE-SU-2023:2371-1",{"_key":159},"SUSE-SU-2023:2425-1",{"_key":161},"SUSE-SU-2023:2428-1",{"_key":163},"SUSE-SU-2023:2431-1",{"_key":165},"SUSE-SU-2023:2443-1",{"_key":167},"SUSE-SU-2023:2455-1",{"_key":169},"SUSE-SU-2023:2459-1",{"_key":171},"SUSE-SU-2023:2468-1",{"_key":173},"SUSE-SU-2023:2140-1",{"_key":175},"SUSE-SU-2023:2141-1",{"_key":177},"SUSE-SU-2023:2231-1",{"_key":179},"SUSE-SU-2023:2809-1",{"_key":181},"DLA-3446-1",{"_key":183},"DLA-3840-1",{"_key":185},"DSA-5402-1",{"_key":187},"UBUNTU-CVE-2023-0386",{"_key":189},"DEBIAN-CVE-2023-0386",{"_key":191},"RHSA-2023:1554",{"_key":193},"RHSA-2023:1566",{"_key":195},"RHSA-2023:1584",{"_key":197},"RHSA-2023:1659",{"_key":199},"RHSA-2023:1660",{"_key":201},"RHSA-2023:1677",{"_key":203},"RHSA-2023:1681",{"_key":205},"RHSA-2023:1691",{"_key":207},"RHSA-2023:1703",{"_key":209},"RHSA-2023:1970",{"_key":211},"RHSA-2023:1980",{"_key":213},"RHSA-2023:1984",{"_key":215},"LSN-0095-1",{"_key":217},"USN-6025-1",{"_key":219},"USN-6040-1",{"_key":221},"USN-6043-1",{"_key":223},"USN-6057-1",{"_key":225},"USN-6071-1",{"_key":227},"USN-6072-1",{"_key":229},"USN-6134-1",[],[232,233,234,235,236,237,238,239,240,241,242,243,244,245,246],{"_key":151},{"_key":153},{"_key":155},{"_key":157},{"_key":159},{"_key":161},{"_key":163},{"_key":165},{"_key":167},{"_key":169},{"_key":171},{"_key":173},{"_key":175},{"_key":177},{"_key":179},"2023-03-22T00:00:00.000Z","2025-10-21T23:15:22.744Z","Analyzed",{"cisa_kev":132,"cisa_ransomware":135,"cisa_vendor":251,"epss_severity":252,"epss_score":253,"severity":254,"severity_score":255,"severity_version":256,"severity_source":257,"severity_vector":258,"severity_status":249},"Linux","critical",0.50619,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[260,269,274,278,282,286,290],{"url":261,"sources":262,"tags":264},"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4f11ada10d0a",[257,263],"nvd",[265,266,267,268],"Broken Link","Mailing List","Patch","Vendor Advisory",{"url":270,"sources":271,"tags":272},"https://security.netapp.com/advisory/ntap-20230420-0004/",[257,263],[273],"Third Party Advisory",{"url":275,"sources":276,"tags":277},"https://www.debian.org/security/2023/dsa-5402",[257,263],[268,273],{"url":279,"sources":280,"tags":281},"https://lists.debian.org/debian-lts-announce/2023/06/msg00008.html",[257,263],[266,273],{"url":283,"sources":284,"tags":285},"http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html",[257,263],[273],{"url":287,"sources":288,"tags":289},"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html",[257,263],[266,273],{"url":291,"sources":292,"tags":293},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-0386",[257,263],[294,295],"Government Resource","US Government Resource",[297],{"source":298,"vendor":251,"product":299,"date_added":300,"vulnerability_name":301,"short_description":302,"required_action":303,"due_date":304,"known_ransomware_campaign_use":305,"notes":306,"exploitation_type":9},"cisa","Kernel","2025-06-17","Linux Kernel Improper Ownership Management Vulnerability","Linux Kernel contains an improper ownership management vulnerability, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system.","Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.","2025-07-08","Unknown","This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. For more information, please see: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4f11ada10d0a ; https://access.redhat.com/security/cve/cve-2023-0386 ; https://security.netapp.com/advisory/ntap-20230420-0004/ ; https://nvd.nist.gov/vuln/detail/CVE-2023-0386",{"date":308,"score":253,"percentile":309},"2026-06-03",0.979,[311,315,319,321,324,326,328,330,332,335,338,342,346,348,350,354,356,359,363,366,370,372,375,378,380,383,386,390,393,396,399,401,404,407,410,412,414,418,421,424,427,429,433,436,439,443,446,449,452,454,457,460,462,464,468,471,474,476,479,483,485,487,490,493,495,498,501,504,507,510,512,514,516,520,524,527,530,532,535,537,540,543,546,550,553,555,558,560,562,565],{"date":312,"score":313,"percentile":314},"2025-11-04",0.58698,0.98107,{"date":316,"score":317,"percentile":318},"2025-11-05",0.60103,0.98169,{"date":320,"score":317,"percentile":318},"2025-11-06",{"date":322,"score":317,"percentile":323},"2025-11-07",0.9817,{"date":325,"score":317,"percentile":318},"2025-11-08",{"date":327,"score":317,"percentile":318},"2025-11-09",{"date":329,"score":317,"percentile":318},"2025-11-10",{"date":331,"score":317,"percentile":318},"2025-11-11",{"date":333,"score":317,"percentile":334},"2025-11-12",0.98171,{"date":336,"score":317,"percentile":337},"2025-11-13",0.98172,{"date":339,"score":340,"percentile":341},"2025-11-14",0.59219,0.98135,{"date":343,"score":344,"percentile":345},"2025-11-15",0.58543,0.98102,{"date":347,"score":344,"percentile":345},"2025-11-16",{"date":349,"score":344,"percentile":345},"2025-11-17",{"date":351,"score":352,"percentile":353},"2025-11-18",0.48467,0.97609,{"date":355,"score":352,"percentile":353},"2025-11-19",{"date":357,"score":352,"percentile":358},"2025-11-20",0.97616,{"date":360,"score":361,"percentile":362},"2025-11-21",0.58243,0.98077,{"date":364,"score":361,"percentile":365},"2025-11-22",0.98076,{"date":367,"score":368,"percentile":369},"2025-11-23",0.57351,0.98025,{"date":371,"score":368,"percentile":369},"2025-11-24",{"date":373,"score":368,"percentile":374},"2025-11-25",0.98027,{"date":376,"score":368,"percentile":377},"2025-11-26",0.98026,{"date":379,"score":368,"percentile":374},"2025-11-27",{"date":381,"score":368,"percentile":382},"2025-11-28",0.98028,{"date":384,"score":368,"percentile":385},"2025-11-29",0.9803,{"date":387,"score":388,"percentile":389},"2025-11-30",0.6034,0.98181,{"date":391,"score":388,"percentile":392},"2025-12-01",0.98196,{"date":394,"score":388,"percentile":395},"2025-12-02",0.98197,{"date":397,"score":388,"percentile":398},"2025-12-03",0.98198,{"date":400,"score":388,"percentile":389},"2025-12-04",{"date":402,"score":388,"percentile":403},"2025-12-05",0.9818,{"date":405,"score":388,"percentile":406},"2025-12-06",0.98182,{"date":408,"score":388,"percentile":409},"2025-12-07",0.98183,{"date":411,"score":388,"percentile":409},"2025-12-08",{"date":413,"score":388,"percentile":409},"2025-12-09",{"date":415,"score":416,"percentile":417},"2025-12-10",0.5981,0.98161,{"date":419,"score":416,"percentile":420},"2025-12-11",0.98165,{"date":422,"score":416,"percentile":423},"2025-12-12",0.98167,{"date":425,"score":416,"percentile":426},"2025-12-13",0.98163,{"date":428,"score":416,"percentile":426},"2025-12-14",{"date":430,"score":431,"percentile":432},"2025-12-15",0.58617,0.98106,{"date":434,"score":431,"percentile":435},"2025-12-16",0.9811,{"date":437,"score":431,"percentile":438},"2025-12-17",0.98113,{"date":440,"score":441,"percentile":442},"2025-12-18",0.61552,0.9824,{"date":444,"score":441,"percentile":445},"2025-12-19",0.98241,{"date":447,"score":441,"percentile":448},"2025-12-20",0.98242,{"date":450,"score":441,"percentile":451},"2025-12-21",0.98239,{"date":453,"score":441,"percentile":451},"2025-12-22",{"date":455,"score":441,"percentile":456},"2025-12-23",0.98236,{"date":458,"score":441,"percentile":459},"2025-12-24",0.98237,{"date":461,"score":441,"percentile":442},"2025-12-25",{"date":463,"score":441,"percentile":445},"2025-12-26",{"date":465,"score":466,"percentile":467},"2025-12-27",0.64394,0.98386,{"date":469,"score":441,"percentile":470},"2025-12-28",0.98243,{"date":472,"score":441,"percentile":473},"2025-12-29",0.98244,{"date":475,"score":441,"percentile":473},"2025-12-30",{"date":477,"score":431,"percentile":478},"2025-12-31",0.98114,{"date":480,"score":481,"percentile":482},"2026-01-01",0.59949,0.982,{"date":484,"score":481,"percentile":482},"2026-01-02",{"date":486,"score":481,"percentile":482},"2026-01-03",{"date":488,"score":481,"percentile":489},"2026-01-04",0.98184,{"date":491,"score":481,"percentile":492},"2026-01-05",0.98185,{"date":494,"score":481,"percentile":492},"2026-01-06",{"date":496,"score":481,"percentile":497},"2026-01-07",0.98187,{"date":499,"score":481,"percentile":500},"2026-01-08",0.98188,{"date":502,"score":481,"percentile":503},"2026-01-09",0.9819,{"date":505,"score":481,"percentile":506},"2026-01-10",0.98191,{"date":508,"score":481,"percentile":509},"2026-01-11",0.98189,{"date":511,"score":481,"percentile":500},"2026-01-12",{"date":513,"score":481,"percentile":500},"2026-01-13",{"date":515,"score":481,"percentile":503},"2026-01-14",{"date":517,"score":518,"percentile":519},"2026-01-15",0.60809,0.98225,{"date":521,"score":522,"percentile":523},"2026-01-16",0.5784,0.98092,{"date":525,"score":522,"percentile":526},"2026-01-17",0.98094,{"date":528,"score":522,"percentile":529},"2026-01-18",0.98093,{"date":531,"score":522,"percentile":526},"2026-01-19",{"date":533,"score":522,"percentile":534},"2026-01-20",0.98096,{"date":536,"score":522,"percentile":534},"2026-01-21",{"date":538,"score":522,"percentile":539},"2026-01-22",0.98098,{"date":541,"score":522,"percentile":542},"2026-01-23",0.98099,{"date":544,"score":522,"percentile":545},"2026-01-24",0.98101,{"date":547,"score":548,"percentile":549},"2026-01-25",0.56944,0.98058,{"date":551,"score":548,"percentile":552},"2026-01-26",0.9806,{"date":554,"score":548,"percentile":552},"2026-01-27",{"date":556,"score":548,"percentile":557},"2026-01-28",0.98061,{"date":559,"score":548,"percentile":552},"2026-01-29",{"date":561,"score":548,"percentile":552},"2026-01-30",{"date":563,"score":548,"percentile":564},"2026-01-31",0.98055,{"date":566,"score":548,"percentile":567},"2026-02-01",0.98074,[569,574],{"source":257,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":570,"cvss_v4_0":9},{"baseScore":255,"baseSeverity":571,"vectorString":258,"impactScore":572,"exploitabilityScore":573},"HIGH",9.8,4.6,{"source":263,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":575,"cvss_v4_0":9},{"baseScore":255,"baseSeverity":571,"vectorString":258,"impactScore":572,"exploitabilityScore":573},[577,590,597,622,629,634,639,644],{"ecosystem":9,"name":578,"vendor":579,"product":580,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":582},"ubuntu linux","canonical","ubuntu_linux","o",[583,586,588],{"version":584,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04","cpe",{"version":587,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.04",{"version":589,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"22.04",{"ecosystem":9,"name":591,"vendor":592,"product":593,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":594},"debian linux","debian","debian_linux",[595],{"version":596,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":598,"vendor":599,"product":600,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":601},"linux kernel","linux","linux_kernel",[602,608,612,614,616,618,620],{"version":603,"is_range":132,"range_type":585,"version_start":604,"version_start_type":605,"version_end":606,"version_end_type":607,"fixed_in":9},"gte5.11_lt5.15.91","5.11","including","5.15.91","excluding",{"version":609,"is_range":132,"range_type":585,"version_start":610,"version_start_type":605,"version_end":611,"version_end_type":607,"fixed_in":9},"gte5.16_lt6.1.9","5.16","6.1.9",{"version":613,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2:rc1",{"version":615,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2:rc2",{"version":617,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2:rc3",{"version":619,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2:rc4",{"version":621,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2:rc5",{"ecosystem":9,"name":623,"vendor":624,"product":625,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":626},"h300s firmware","netapp","h300s_firmware",[627],{"version":628,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":630,"vendor":624,"product":631,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":632},"h410c firmware","h410c_firmware",[633],{"version":628,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":635,"vendor":624,"product":636,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":637},"h410s firmware","h410s_firmware",[638],{"version":628,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":640,"vendor":624,"product":641,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":642},"h500s firmware","h500s_firmware",[643],{"version":628,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":645,"vendor":624,"product":646,"cpe_part":581,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":647},"h700s firmware","h700s_firmware",[648],{"version":628,"is_range":135,"range_type":585,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]