admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2023/CVE-2023-2640.md
0xMarcio 3428c6bdc6 Update CVE sources 2024-08-05 18:41
2024-08-05 18:41:32 +00:00

55 lines
2.6 KiB
Markdown
Raw Blame History

### [CVE-2023-2640](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2640)
![](https://img.shields.io/static/v1?label=Product&message=Ubuntu%20Kernel&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-863&color=brighgreen)
### Description
On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/0xWhoami35/root-kernel
- https://github.com/0xsyr0/OSCP
- https://github.com/Ev3rPalestine/Analytics-HTB-Walkthrough
- https://github.com/HaxorSecInfec/autoroot.sh
- https://github.com/K5LK/CVE-2023-2640-32629
- https://github.com/Kiosec/Linux-Exploitation
- https://github.com/Nkipohcs/CVE-2023-2640-CVE-2023-32629
- https://github.com/OllaPapito/gameoverlay
- https://github.com/PuguhDy/CVE-Root-Ubuntu
- https://github.com/SanjayRagavendar/Ubuntu-GameOver-Lay
- https://github.com/SanjayRagavendar/UbuntuPrivilegeEscalationV1
- https://github.com/SenukDias/OSCP_cheat
- https://github.com/SirElmard/ethical_hacking
- https://github.com/Snoopy-Sec/Localroot-ALL-CVE
- https://github.com/ThrynSec/CVE-2023-32629-CVE-2023-2640---POC-Escalation
- https://github.com/Umutkgz/CVE-2023-32629-CVE-2023-2640-Ubuntu-Privilege-Escalation-POC
- https://github.com/brimstone/stars
- https://github.com/churamanib/p0wny-shell
- https://github.com/cyberexpertsng/Cyber-Advisory
- https://github.com/druxter-x/PHP-CVE-2023-2023-2640-POC-Escalation
- https://github.com/g1vi/CVE-2023-2640-CVE-2023-32629
- https://github.com/giterlizzi/secdb-feeds
- https://github.com/ilviborici/ubuntu-privesc
- https://github.com/johnlettman/juju-patch-gameoverlay
- https://github.com/johnlettman/juju-scripts
- https://github.com/k4but0/Ubuntu-LPE
- https://github.com/kaotickj/Check-for-CVE-2023-32629-GameOver-lay
- https://github.com/kgwanjala/oscp-cheatsheet
- https://github.com/luanoliveira350/GameOverlayFS
- https://github.com/musorblyat/CVE-2023-2640-CVE-2023-32629
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/oscpname/OSCP_cheat
- https://github.com/revanmalang/OSCP
- https://github.com/txuswashere/OSCP
- https://github.com/vinetsuicide/CVE-2023-2640-CVE-2023-32629
- https://github.com/xS9NTX/CVE-2023-32629-CVE-2023-2640-Ubuntu-Privilege-Escalation-POC
- https://github.com/xairy/linux-kernel-exploitation
- https://github.com/xhref/OSCP
Reference in New Issue View Git Blame Copy Permalink