Lucene search

K
cvelistRedhatCVELIST:CVE-2017-2619
HistoryMar 27, 2017 - 12:00 a.m.

CVE-2017-2619

2017-03-2700:00:00
CWE-362
redhat
www.cve.org

7.6 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

87.1%

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

CNA Affected

[
  {
    "product": "samba",
    "vendor": "Samba",
    "versions": [
      {
        "status": "affected",
        "version": "4.6.1"
      },
      {
        "status": "affected",
        "version": "4.5.7"
      },
      {
        "status": "affected",
        "version": "4.4.11"
      }
    ]
  }
]