Vulnerability in Linux Linux_kernel
CVE-2015-1328
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain ro…
EPSS: 0.896 (99.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Linux Linux_kernel
- Canonical Ubuntu_linux
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
- elit3pwner/CVE-2015-1328-GoldenEye
- 0xf1d0/CVE-2015-1328
- saqib-butt2/blackbox-pentesting-infsecos
- thieveshkar/RootQuest-CTF-Box-Multi-Stage-Exploitation-VM
- YastrebX/CVE-2015-1328
- BlackFrog-hub/cve-2015-1328
- notlikethis/CVE-2015-1328
- SR7-HACKING/LINUX-VULNERABILITY-CVE-2015-1328
- rapid7/metasploit-framework
- ArtemCyberLab/Remote-Server-Vulnerability-Analysis-part-2-
References
- security@ubuntu.com (x_refsource_CONFIRM, Vendor Advisory)
- 75206 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- 37292 (exploit, x_refsource_EXPLOIT-DB)
- 40688 (Exploit, exploit, VDB Entry, x_refsource_EXPLOIT-DB)
- security@ubuntu.com (x_refsource_CONFIRM, Third Party Advisory)
- [oss-security] 20150616 CVE-2015-1328: incorrect permission checks in overlayfs, ubuntu local root (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
Frequently asked questions
- What is CVE-2015-1328?
- CVE-2015-1328 is a high-severity vulnerability in Linux Linux_kernel, classified under CWE-264. CVSS score: 7.8/10. Published 2016-11-28.
- How severe is CVE-2015-1328?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2015-1328 known to be exploited?
- 89 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.