cbcvebase.
CVE-2016-2853
published 2016-05-02

CVE-2016-2853: The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an…

PriorityP344high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
0.91%
55.3th percentile
The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.

Affected

8 ranges
VendorProductVersion rangeFixed in
debianlinux< linux 3.18-1~exp1 (bookworm)linux 3.18-1~exp1 (bookworm)
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 4.4.0-222.2554.4.0-222.255
linuxlinux_kernel3.0.0 – 3.19.8
linuxlinux_kernel4.0.0 – 4.20.15

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.