Overview
- Description
- A flaw was found in the Linux kernel's OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain access to hidden files that should not be accessible.
- Source
- secalert@redhat.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
- secalert@redhat.com
- CWE-200
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "202CAD0B-4BA5-4F2B-8C10-8290E5F5434C",
"versionEndExcluding": "5.14"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A05198E-F8FA-4517-8D0E-8C95066AED38"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71268287-21A8-4488-AA4F-23C473153131"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "23B9E5C6-FAB5-4A02-9E39-27C8787B0991"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D185CF67-7E4A-4154-93DB-CE379C67DB56"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1DA0AF6-02F4-47C7-A318-8C006ED0C665"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "49DD30B1-8C99-4C38-A66B-CAB3827BEE8A"
}
],
"operator": "OR"
}
]
}
]