Lucene search
+L

441 matches found

osv
osv
added yesterday6 views

RHSA-2026:39576 Red Hat Security Advisory: cifs-utils security, bug fix, and enhancement update

Bulletin has no description...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References8
osv
osv
added yesterday4 views

RHSA-2026:39575 Red Hat Security Advisory: cifs-utils security, bug fix, and enhancement update

Bulletin has no description...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References9
osv
osv
added yesterday4 views

ALSA-2026:39575 Important: cifs-utils security, bug fix, and enhancement update

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. The cifs-utils packages contain tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a...

7.8CVSS6AI score0.00121EPSS
Exploits0References4
ubuntu
ubuntu
added 3 days ago7 views

USN-8496-3: cifs-utils vulnerability

USN-8496-1 fixed vulnerabilities in cifs-utils. The update caused a regression and was backed out in USN-8496-2. This update reintroduces the security fix, along with a fix for the regression. Original advisory details: It was discovered that cifs-utils incorrectly dropped root privileges before...

7.8CVSS6.3AI score0.00121EPSS
Exploits0
amazon
amazon
added 2026/07/07 12:0 a.m.5 views

Low: cifs-utils

Issue Overview: No CVE associated with this advisory Affected Packages: cifs-utils Issue Correction: Run dnf update cifs-utils --releasever 2023.12.20260706 or dnf update --advisory ALAS2023-2026-1927 --releasever 2023.12.20260706 to update your system. More information on how to update your syst...

7.8CVSS5.9AI score0.00121EPSS
Exploits0
ubuntu
ubuntu
added 2026/07/03 6:49 p.m.14 views

USN-8496-2: cifs-utils regression

USN-8496-1 fixed a vulnerability in cifs-utils. Unfortunately, the fix introduced a regression with Kerberos mounts. This update reverts the security update until a complete fix is available. We apologize for the inconvenience. Original advisory details: It was discovered that cifs-utils...

6.3AI score
Exploits0References1
nessus
nessus
added 2026/07/03 12:0 a.m.8 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : cifs-utils vulnerability (USN-8496-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8496-1 advisory. It was discovered that cifs-utils incorrectly dropped root privileges before looking up user information. A local attacker could...

7.8CVSS6.3AI score0.00121EPSS
Exploits0References2
ubuntu
ubuntu
added 2026/07/02 3:11 p.m.7 views

USN-8496-1: cifs-utils vulnerability

It was discovered that cifs-utils incorrectly dropped root privileges before looking up user information. A local attacker could possibly use this issue to execute arbitrary code as the root user...

7.8CVSS6.1AI score0.00121EPSS
Exploits0
osv
osv
added 2026/07/02 3:11 p.m.7 views

USN-8496-1 cifs-utils vulnerability

It was discovered that cifs-utils incorrectly dropped root privileges before looking up user information. A local attacker could possibly use this issue to execute arbitrary code as the root user...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References2
nessus
nessus
added 2026/07/02 12:0 a.m.6 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-12505)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-12505 advisory. - A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References1
nessus
nessus
added 2026/07/02 12:0 a.m.6 views

SUSE SLES12 Security Update : cifs-utils (SUSE-SU-2026:2700-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:2700-1 advisory. This update for cifs-utils fixes the following issue - CVE-2026-12505: cifs.upcall local privilege escalation via requestkey-controlled namespace switc...

7.8CVSS6AI score0.00121EPSS
Exploits0References4
cbl_mariner
cbl_mariner
added 2026/07/01 2:6 a.m.6 views

CVE-2026-12505 affecting package cifs-utils for versions less than 7.6-1

CVE-2026-12505 affecting package cifs-utils for versions less than 7.6-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS5.7AI score0.00121EPSS
Exploits0
osv
osv
added 2026/06/30 9:21 a.m.4 views

SUSE-SU-2026:2699-1 Security update for cifs-utils

This update for cifs-utils fixes the following issue - CVE-2026-12505: cifs.upcall local privilege escalation via requestkey-controlled namespace switch and NSS loading bsc1267389...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References3
nessus
nessus
added 2026/06/30 12:0 a.m.9 views

RHEL 10 : cifs-utils (RHSA-2026:32990)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:32990 advisory. The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. The cifs-utils packages contain tools for...

7.8CVSS5.7AI score0.00121EPSS
Exploits0References4
redhat
redhat
added 2026/06/29 11:15 p.m.5 views

cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall

A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted requestkey payload to trick the root-own...

7.8CVSS6AI score0.00121EPSS
Exploits0References5
redhat
redhat
added 2026/06/29 11:15 p.m.6 views

Important: Red Hat Security Advisory: cifs-utils security update

An update for cifs-utils is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.8CVSS5.6AI score0.00121EPSS
Exploits0References2
osv
osv
added 2026/06/18 4:16 a.m.7 views

DEBIAN-CVE-2026-12505

A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted requestkey payload to trick the root-own...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/18 3:34 a.m.10 views

CVE-2026-12505

A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted requestkey payload to trick the root-own...

7.8CVSS6AI score0.00121EPSS
Exploits0References4
cvelist
cvelist
added 2026/06/18 3:34 a.m.34 views

CVE-2026-12505 Cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall

A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted requestkey payload to trick the root-own...

7.8CVSS0.00121EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2026/06/18 3:34 a.m.14 views

CVE-2026-12505 Cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall

A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted requestkey payload to trick the root-own...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References6
Rows per page
Query Builder