Lucene search
+L

11291 matches found

nessus
nessus
added 2026/06/11 12:0 a.m.8 views

openSUSE 16 Security Update : samba (openSUSE-SU-2026:20905-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20905-1 advisory. This update for samba fixes the following issues Security issues: - CVE-2026-1933: Missing access check on reparse point operations bsc1261188. ...

9.8CVSS5.8AI score0.12797EPSS
Exploits9References23
nessus
nessus
added 2026/06/11 12:0 a.m.10 views

RockyLinux 10 : samba (RLSA-2026:22963)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:22963 advisory. samba: Missing access check on reparse point operations CVE-2026-1933 samba: vfsworm does not block directory modification CVE-2026-2340 samba: group...

9.8CVSS6.1AI score0.12797EPSS
Exploits10References13
nessus
nessus
added 2026/06/11 12:0 a.m.9 views

Slackware Linux 15.0 samba Multiple Vulnerabilities (SSA:2026-158-01)

The version of samba installed on the remote host is prior to 4.22.10. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-158-01 advisory. New samba packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding description...

9.8CVSS5.6AI score0.12797EPSS
Exploits9References7
nessus
nessus
added 2026/06/11 12:0 a.m.79 views

AlmaLinux 9 : samba (ALSA-2026:25049)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:25049 advisory. samba: Missing access check on reparse point operations CVE-2026-1933 samba: vfsworm does not block directory modification CVE-2026-2340 samba: group...

9.8CVSS6.1AI score0.12797EPSS
Exploits10References8
redhat
redhat
added 2026/06/10 12:31 p.m.11 views

samba: group policy certificate enrollment uses http:// without validation

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability t...

8CVSS5.4AI score0.00261EPSS
Exploits0References5
redhat
redhat
added 2026/06/10 12:31 p.m.26 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.3AI score0.12797EPSS
Exploits9References5
redhat
redhat
added 2026/06/10 12:31 p.m.16 views

samba: Remote Code Execution in SAMR

A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper...

9.8CVSS5.7AI score0.02501EPSS
Exploits0References5
redhat
redhat
added 2026/06/10 12:31 p.m.13 views

Critical: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6AI score0.12797EPSS
Exploits10References7
redhat
redhat
added 2026/06/10 12:31 p.m.9 views

samba: vfs_worm does not block directory modification

A flaw was found in Samba’s vfsworm module. The module is intended to provide write-once, read-many WORM protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share...

6.5CVSS5.4AI score0.00939EPSS
Exploits0References5
redhat
redhat
added 2026/06/10 12:31 p.m.45 views

samba: Missing access check on reparse point operations

A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-onl...

7.1CVSS5.4AI score0.00862EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/10 8:59 a.m.13 views

CVE-2026-49818

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

6.5CVSS5.6AI score0.00695EPSS
Exploits0References1
osv
osv
added 2026/06/10 12:0 a.m.26 views

ALSA-2026:25049 Critical: samba security update

Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: Missing access check on reparse point operations...

9.8CVSS6AI score0.12797EPSS
Exploits10References14
almalinux
almalinux
added 2026/06/10 12:0 a.m.10 views

Critical: samba security update

Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: Missing access check on reparse point operations...

9.8CVSS6AI score0.12797EPSS
Exploits10References14
snyk
snyk
added 2026/06/09 10:23 a.m.6 views

Directory Traversal

Overview apache-airflow-providers-samba is a Provider package apache-airflow-providers-samba for Apache Airflow Affected versions of this package are vulnerable to Directory Traversal via the GCSToSambaOperator function. An attacker can write files to arbitrary locations on the Samba target by...

6.9CVSS6.2AI score0.00695EPSS
Exploits0References2
pypa
pypa
added 2026/06/09 9:16 a.m.8 views

PYSEC-2026-208

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

6.5CVSS5.5AI score0.00695EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2026/06/09 9:16 a.m.17 views

CVE-2026-49818

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

6.5CVSS0.00695EPSS
Exploits0References3
osv
osv
added 2026/06/09 9:16 a.m.8 views

PYSEC-2026-208

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

6.5CVSS5.5AI score0.00695EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/09 8:59 a.m.12 views

CVE-2026-11493

A weakness has been identified in Tenda AC15 15.03.05.19. The impacted element is an unknown function of the file /etcro/smb.conf of the component Samba. Executing a manipulation can lead to weak password requirements. The attack is only possible within the local network. A high complexity level ...

5CVSS5AI score0.00224EPSS
Exploits0References1
cve
cve
added 2026/06/09 7:42 a.m.22 views

CVE-2026-49818

The CVE concerns Apache Airflow Samba provider’s GCSToSambaOperator, which concatenates GCS object names to the SMB destination path without proper containment checks. This allows objects with ../ segments to traverse outside destination_path, enabling an unauthenticated-like attacker able to wri...

6.5CVSS5.6AI score0.00695EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/06/09 7:42 a.m.9 views

CVE-2026-49818 Apache Airflow Samba provider: Path traversal in GCSToSambaOperator via GCS object names

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

5.6AI score0.00695EPSS
Exploits0References2
Rows per page
Query Builder