Lucene search
K

1785 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:16 a.m.6 views

CVE-2023-27354

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker 70.3-35220. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the SMB directory query command. The...

6.5CVSS6.3AI score0.0063EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:4 a.m.2 views

CVE-2023-20270

A vulnerability in the interaction between the Server Message Block SMB protocol preprocessor and the Snort 3 detection engine for Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service DoS conditi...

5.8CVSS6.8AI score0.00668EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.8 views

The vulnerability of the create_lease_buf() function in the SMB subsystem of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the createleasebuf function in the SMB subsystem of Linux operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00238EPSS
Exploits0References11Affected Software3
RedhatCVE
RedhatCVE
added 2025/05/22 9:49 p.m.6 views

CVE-2022-20943

Multiple vulnerabilities in the Server Message Block Version 2 SMB2 processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service DoS condition on an affected device. These...

5.8CVSS7.5AI score0.0089EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:59 p.m.6 views

CVE-2021-20164

Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses credentials for the smb functionality of the device. Usernames and passwords for all smb users are revealed in plaintext on the smbserver.asp page...

4.9CVSS7AI score0.00725EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0796

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests, aka 'Windows SMBv3 Client/Server Remote Code Execution Vulnerability'...

10CVSS9.1AI score0.9981EPSS
Exploits125References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.18 views

CVE-2020-1301

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'...

8.8CVSS8.1AI score0.36708EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:58 p.m.8 views

CVE-2020-1284

A denial of service vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests, aka 'Windows SMBv3 Client/Server Denial of Service Vulnerability'...

6.5CVSS6.6AI score0.06909EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:56 a.m.11 views

CVE-2019-0786

An elevation of privilege vulnerability exists in the Microsoft Server Message Block SMB Server when an attacker with valid credentials attempts to open a specially crafted file over the SMB protocol on the same machine, aka 'SMB Server Elevation of Privilege Vulnerability'...

9.8CVSS6.7AI score0.06999EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/05/21 12:46 a.m.2 views

SUSE CVE-2025-37954

In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...

6.3CVSS7.7AI score0.00148EPSS
Exploits0References16
BDU FSTEC
BDU FSTEC
added 2025/05/21 12:0 a.m.18 views

The vulnerability of the macOS operating system’s Shortcuts component allows a hacker to bypass existing security restrictions and execute arbitrary code.

The vulnerability of the macOS operating system’s Shortcuts component is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary code by sending specially crafted...

10CVSS5.9AI score
Exploits0References1Affected Software1
OSV
OSV
added 2025/05/20 4:15 p.m.1 views

DEBIAN-CVE-2025-37954

In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...

5.5CVSS5.6AI score0.00148EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/15 12:0 a.m.7 views

The vulnerability in the implementation of the Server Message Block (SMB) protocol in Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the Server Message Block SMB protocol in Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the protocol...

5.6CVSS8AI score0.00828EPSS
Exploits0References3
OSV
OSV
added 2025/05/13 5:15 p.m.3 views

CVE-2025-29956

Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network...

5.4CVSS5.7AI score0.00828EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.6 views

kernel: smb: client: fix possible double free in smb2_set_ea()

A doubly freeing memory vulnerability exists in the Linux kernel smb client. After the first successful memory allocation for 'ea', the second memory release for 'ea' will result in double free, leading to loss of availability of the system...

5.5CVSS7.3AI score0.00215EPSS
Exploits0References5
Amazon
Amazon
added 2025/05/13 12:0 a.m.5 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey CVE-2024-35866 In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconncount: Fully initialize struct nfconncounttuple in inserttree...

7.8CVSS7.9AI score0.00237EPSS
Exploits0
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.3 views

Microsoft Windows SMB Client 安全漏洞

Microsoft Windows SMB Client is an application from Microsoft Corporation USA. An SMB client. A security vulnerability exists in Microsoft Windows SMB Client. An attacker exploiting this vulnerability could gain access to sensitive information. The following products and editions are...

5.4CVSS8.3AI score0.00828EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.14 views

PT-2025-22215

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition in the Linux kernel's SMB client can occur when a pre-existing valid cfid returned from find or create cached dir might race with a lease break. This can cause open cach...

5.5CVSS5.5AI score0.00148EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.5 views

Do Not Enable the Samba Service

The daemon of Samba allows the system administrator to configure the Linux system to share file systems and directories with Windows systems. Samba publishes file systems and directories through the Server Message Block SMB protocol. Windows users will be able to mount these directories and file...

6.8AI score
Exploits0References1
Metasploit
Metasploit
added 2025/05/06 6:54 p.m.273 views

SMB to HTTP relay version of Get NAA Creds

This module creates an SMB server and then relays the credentials passed to it to SCCM's HTTP server aka Management Point to gain an authenticated connection. Once authenticated it then attempts to retrieve the Network Access Accounts, if configured, from the SCCM server. This requires a computer...

5.8AI score
Exploits0
Rows per page
Query Builder