CISA Warns of Active Exploitation of Linux Kernel Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) of the United States added a security flaw affecting the Linux kernel to its catalog of known exploited vulnerabilities (KEV) on Tuesday, indicating that it has been actively exploited. The vulnerability, CVE-2023-0386 (CVSS score: 7.8), is an incorrect ownership bug in the Linux kernel that could be exploited to escalate privileges on vulnerable systems.