CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

Rosalinux•added 2024/07/15 9:4 a.m.•36 views

Advisory ROSA-SA-2024-2451

Software: samba 4.12.3 OS: ROSA Virtualization 2.1 packageevrstring: samba-4.12.3 CVE-ID: CVE-2020-25722 BDU-ID: 2022-00004 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Active Directory Domain Controller component of the Samba networking software package is caused by a buffer overflow...

9.8CVSS8.1AI score0.35695EPSS

Exploits2

Tenable Nessus•added 2024/05/17 12:0 a.m.•17 views

EulerOS Virtualization 3.0.6.0 : samba (EulerOS-SA-2024-1704)

According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when...

6.5CVSS6.9AI score0.00438EPSS

Exploits0References2

Tenable Nessus•added 2024/03/21 12:0 a.m.•32 views

EulerOS Virtualization 2.11.1 : samba (EulerOS-SA-2024-1408)

7.5CVSS6.7AI score0.00578EPSS

Exploits0References4

Tenable Nessus•added 2024/01/16 12:0 a.m.•25 views

EulerOS Virtualization 2.9.1 : samba (EulerOS-SA-2024-1047)

6.5CVSS6.9AI score0.00438EPSS

Exploits0References2

Tenable Nessus•added 2023/12/18 12:0 a.m.•71 views

QNAP QTS / QuTS hero Vulnerabilities in Samba (QSA-23-20)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-20 advisory. - A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory...

9.8CVSS7.1AI score0.01941EPSS

Exploits1References6

Mageia•added 2023/12/05 10:31 p.m.•49 views

Updated samba packages fix security vulnerabilities

This update fixes the security issues below. A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB clients to remote procedure call RPC services like...

9.8CVSS7.5AI score0.01941EPSS

Exploits1References3

RedHat Linux•added 2023/11/21 12:13 p.m.•3 views

samba: SMB clients can truncate files with read-only permissions

A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when the Samba VFS module "aclxattr" is configured with "aclxattr:ignore system acls = yes". The SMB protocol allows opening files when the client requests read-only acces...

6.5CVSS6.7AI score0.00438EPSS

Exploits0References6

Tenable Nessus•added 2023/11/04 12:0 a.m.•39 views

Amazon Linux 2023 : libnetapi, libnetapi-devel, libsmbclient (ALAS2023-2023-416)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-416 advisory. Samba is vulnerable to path traversal due to insufficient sanitization of clients incoming pipe names. This can lead to the client connecting to as root to a Unix domain socket outside of the...

9.8CVSS7.3AI score0.01941EPSS

Exploits1References6

OSV•added 2023/11/03 8:15 a.m.•28 views

CVE-2023-4091

6.5CVSS7AI score0.00438EPSS

Exploits0References13

NVD•added 2023/11/03 8:15 a.m.•19 views

CVE-2023-4091

6.5CVSS7.1AI score0.00438EPSS

Exploits0References13

Prion•added 2023/11/03 8:15 a.m.•31 views

Design/Logic Flaw

4CVSS6.2AI score0.00438EPSS

Exploits0References12Affected Software5

Debian CVE•added 2023/11/03 7:56 a.m.•35 views

CVE-2023-4091

6.5CVSS6.8AI score0.00438EPSS

Exploits0

Cvelist•added 2023/11/03 7:56 a.m.•25 views

CVE-2023-4091 Samba: smb clients can truncate files with read-only permissions

6.5CVSS7AI score0.00438EPSS

Exploits0References10

AlpineLinux•added 2023/11/03 7:56 a.m.•39 views

CVE-2023-4091

6.5CVSS7.2AI score0.00438EPSS

Exploits0

RedHat Linux•added 2023/10/31 10:11 a.m.•3 views

samba: SMB clients can truncate files with read-only permissions

6.5CVSS6.7AI score0.00438EPSS

Exploits0References6

Slackware Linux•added 2023/10/11 6:45 a.m.•53 views

[slackware-security] samba

New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/samba-4.18.8-i586-1slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Unsanitized pipe name...

9.8CVSS6.5AI score0.01941EPSS

Exploits1

UbuntuCve•added 2023/10/10 12:0 a.m.•34 views

CVE-2023-4091

6.5CVSS6.8AI score0.00438EPSS

Exploits0References4

OpenVAS•added 2022/05/05 12:0 a.m.•23 views

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2022-1614)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.1AI score0.35695EPSS

Exploits2References2

RedHat Linux•added 2022/02/23 7:28 p.m.•52 views

Critical: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact...

9CVSS7.5AI score0.35695EPSS

Exploits1References2

Amazon•added 2022/02/19 12:0 a.m.•35 views

Critical: samba

Issue Overview: A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required. CVE-2016-2124 A flaw was found in the way Samba maps domain users to local users. ...

9CVSS7.6AI score0.35695EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by