Explore >> Select a destination

You are here

 securitylabs.datadoghq.com
The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation | Datadog Security Labs
| | srcincite.io
From Shared Dash to Root Bash :: Pre-Authenticated RCE in VMWare vRealize Operations Manager
11.1 parsecs away

Travel
| | On May 27th, I reported a handful of security vulnerabilities to VMWare impacting their vRealize Operations Management Suite (vROps) appliance. In this blog ...
| | www.wiz.io
GameOverlay Vulnerability Impacts 40% of Ubuntu Workloads | Wiz Blog
6.3 parsecs away

Travel
| | Wiz Research discovers CVE-2023-2640 & CVE-2023-32629, 2 privilege escalation vulnerabilities in Ubuntu's OverlayFS module impacting 40% of cloud workloads.
| | www.halfdog.net
Overlayfs Over Fuse Local Root Privilege Escalation
9.5 parsecs away

Travel
| | On Ubuntu Wily it is possible to place an USERNS overlayfs mount over a fuse (file system in userspace) mount. The fuse filesystem may contain SUID binaries, but those cannot be executed due to nosuid mount options. But when touching such an SUID binary via overlayfs mount, this will trigger copy_up including all file attributes, thus creating a real SUID binary on the disk.
| | www.jenkins.io
Spring Framework RCE, CVE-2022-22965
31.2 parsecs away

Travel
| The Jenkins project's response to a critical security vulnerability in the "Spring" framework.