CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

76 matches found

samba: Missing access check on reparse point operations

A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-onl...

7.1CVSS5.8AI score0.0083EPSS

Exploits0References5

RedHat Linux•added 2 days ago•4 views

samba: Missing access check on reparse point operations

7.1CVSS5.8AI score0.0083EPSS

Exploits0References5

RedHat Linux•added 2 days ago•6 views

samba: Missing access check on reparse point operations

7.1CVSS5.8AI score0.0083EPSS

Exploits0References5

OSV•added 2026/06/11 12:5 p.m.•7 views

RLSA-2026:22963 Critical: samba security update

Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: Missing access check on reparse point operations...

9CVSS6AI score0.12797EPSS

Exploits8References7

OSV•added 2026/06/10 12:0 a.m.•11 views

ALSA-2026:25049 Critical: samba security update

9.8CVSS6AI score0.12797EPSS

Exploits8References14

OSV•added 2026/06/05 3:49 p.m.•6 views

OESA-2026-2576 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A flaw was found in Samba's certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and...

9.8CVSS6.5AI score0.12797EPSS

Exploits7References5

RedHat Linux•added 2026/06/03 9:52 p.m.•11 views

samba: Missing access check on reparse point operations

7.1CVSS5.7AI score0.0083EPSS

Exploits0References5

EUVD•added 2026/05/27 3:33 p.m.•13 views

EUVD-2026-32275

7.1CVSS5.7AI score0.0083EPSS

Exploits0References4

OSV•added 2026/05/27 2:16 p.m.•7 views

ALPINE-CVE-2026-1933

6.5CVSS5.7AI score0.0083EPSS

Exploits0References1

NVD•added 2026/05/27 2:16 p.m.•21 views

CVE-2026-1933

7.1CVSS0.0083EPSS

Exploits0References12

CVE•added 2026/05/27 12:28 p.m.•41 views

CVE-2026-1933

Samba CVE-2026-1933 involves missing SMB-layer access checks for NTFS-style reparse points on read-only = yes shares. Authenticated users with underlying filesystem write permissions can create or delete reparse point metadata via SMB, potentially altering SMB-visible file behavior (e.g., convert...

7.1CVSS5.7AI score0.0083EPSS

Exploits0References12Affected Software3

ATTACKERKB•added 2026/05/27 12:28 p.m.•4 views

CVE-2026-1933

7.1CVSS5.8AI score0.0083EPSS

Exploits0References13

Vulnrichment•added 2026/05/27 12:28 p.m.•10 views

CVE-2026-1933 Samba: missing access check on reparse point operations

7.1CVSS5.7AI score0.0083EPSS

Exploits0References12

Cvelist•added 2026/05/27 12:28 p.m.•43 views

CVE-2026-1933 Samba: missing access check on reparse point operations

7.1CVSS0.0083EPSS

Exploits0References12

AlpineLinux•added 2026/05/27 12:28 p.m.•15 views

CVE-2026-1933

7.1CVSS5.7AI score0.0083EPSS

Exploits0

RedhatCVE•added 2026/05/27 12:14 p.m.•11 views

CVE-2026-1933

7.1CVSS5.8AI score0.0083EPSS

Exploits0References4

SUSE CVE•added 2026/05/27 2:53 a.m.•10 views

SUSE CVE-2026-1933

A flaw was found in Samba's handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-onl...

7.1CVSS5.7AI score0.0083EPSS

Exploits0References8

Packet Storm•added 2026/04/27 12:0 a.m.•73 views

📄 Windows Cloud Files Tiering Engine Local Privilege Escalation

his Metasploit local exploit module models a Windows privilege escalation scenario involving Cloud Files, NTFS reparse points, named pipes, and service interaction. The workflow simulates abusing file system operations and cloud sync mechanisms by creating controlled directories, placeholder file...

5.3AI score

Exploits0

Tenable Nessus•added 2026/01/22 12:0 a.m.•5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49996)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49996 advisory. - In the Linux kernel, the following vulnerability has been resolved: cifs: Fix buffer overflow when parsing N...

7.8CVSS6.6AI score0.00333EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-8835

Malware in sbrugna...

7.1CVSS6.7AI score0.00942EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by