<ul data-eligibleForWebStory="false"><li>CVE ID: CVE-2023-0386</li><li>Vulnerability Name: Linux Kernel Improper Ownership Management Vulnerability</li><li>Date Added: 2025-06-17, Due Date: 2025-07-08</li><li>Description: Linux Kernel has an improper ownership management vulnerability in the OverlayFS subsystem, allowing local users to escalate privileges by copying a capable file from a nosuid mount.</li><li>Known To Be Used in Ransomware Campaigns: Unknown</li><li>Action: Apply mitigations as per vendor instructions or discontinue product use if mitigations are not available.</li><li>Additional Notes: The vulnerability affects a common open-source component. Links for more information: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4f11ada10d0a, https://access.redhat.com/security/cve/cve-2023-0386, https://security.netapp.com/advisory/ntap-20230420-0004/, https://nvd.nist.gov/vuln/detail/CVE-2023-0386</li><li>More CVEs: Common Vulnerabilities & Exposures (CVE) List</li></ul>

CVE-2023-0386: Linux Kernel Improper Ownership Management Vulnerability

Discover more