CVE-2021-3493
Linux Kernel Privilege Escalation Vulnerability
CVSS
—
No CVSS
EPSS
44.0%
p99
KEV
YES
Oct 20, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
44.0%EPSS · 30 days44.0%
2026-06-302026-07-16
Product
Linux / Kernel
Vulnerability
Linux Kernel Privilege Escalation Vulnerability
Added to KEV
Oct 20, 2022
Remediate by
Nov 10, 2022
Known ransomware use
No
Summary description
The overlayfs stacking file system in Linux kernel does not properly validate the application of file capabilities against user namespaces, which could lead to privilege escalation.
Required action
Apply updates per vendor instructions.
Notes
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c03e2cda4a584cadc398e8f6641ca9988a39d52; https://nvd.nist.gov/vuln/detail/CVE-2021-3493
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-314317.8 HIG99.9%
KEV—80Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability2dCVE-2022-0847—99.8%
KEV—80Linux Kernel Privilege Escalation Vulnerability—CVE-2016-5195—99.7%
KEV—80Linux Kernel Race Condition Vulnerability—CVE-2021-22555—99.5%
KEV—80Linux Kernel Heap Out-of-Bounds Write Vulnerability—CVE-2019-13272—98.8%
KEV—80Linux Kernel Improper Privilege Management Vulnerability—CVE-2013-2094—98.7%
KEV—80Linux Kernel Privilege Escalation Vulnerability—