CVE-2021-3847Improper Preservation of Permissions in Kernel

CWE-281Improper Preservation of Permissions9 documents8 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 91.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Linux KernelFedoraproject FedoraDebian Linux+4 more
Timeline
PublishedApr 1
Latest updateJul 27

Description

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages7 packages

NVDlinux/linux_kernel5.17.0
CVEListV5linux/linux_kernelall versions up to, including, kernel 5.17
debiandebian/linux

Also affects: Fedora 34

🔴Vulnerability Details

2
GHSA
GHSA-m6pr-c5vr-9466: An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user co2022-04-03
OSV
CVE-2021-3847: An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user co2022-04-01

📋Vendor Advisories

3
Microsoft
An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into anot2022-04-12
Red Hat
kernel: low-privileged user privileges escalation2021-09-13
Debian
CVE-2021-3847: linux - An unauthorized access to the execution of the setuid file with capabilities fla...2021

🕵️Threat Intelligence

2
Wiz
GameOverlay Vulnerability Impacts 40% of Ubuntu Workloads | Wiz Blog2023-07-27
Wiz
GameOverlay Vulnerability Impacts 40% of Ubuntu Workloads | Wiz Blog2023-07-27

💬Community

1
Bugzilla
CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation2023-01-09