https://heyitsas.im/posts/cifswitch/
Another day, another LPE vulnerability.
We've done some testing and this is exploitable on a stock Ubuntu 24.04 machine from an unprivileged user account but not from within an Enhance website container.
The exploit only works if you have the cifs-utils package installed. This package is not part of the default Ubuntu server installation and is not installed by Enhance so it's very unlikely you have it on your system. To be absolutely sure, run dpkg -l cifs-utils as root.
