cbcvebase.
CVE-2016-2854
published 2016-05-02

CVE-2016-2854: The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a…

PriorityP344high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
0.95%
56.8th percentile
The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.

Affected

8 ranges
VendorProductVersion rangeFixed in
debianlinux< linux 3.18-1~exp1 (bookworm)linux 3.18-1~exp1 (bookworm)
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 3.18-1~exp13.18-1~exp1
linuxlinux_kernel>= 0 < 4.4.0-222.2554.4.0-222.255
linuxlinux_kernel3.0.0 – 3.19.8
linuxlinux_kernel4.0.0 – 4.20.15

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.