Samba Cifs Utils
By the Year
In 2022 there have been 2 vulnerabilities in Samba Cifs Utils with an average score of 6.6 out of ten. Last year Cifs Utils had 1 security vulnerability published. That is, 1 more vulnerability have already been reported in 2022 as compared to last year. However, the average CVE base score of the vulnerabilities in 2022 is greater by 0.45.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2022 | 2 | 6.55 |
| 2021 | 1 | 6.10 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Cifs Utils vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Samba Cifs Utils Security Vulnerabilities
cifs-utils through 6.14, with verbose logging
CVE-2022-29869
5.3 - Medium
- April 28, 2022
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file.
Exposure of Resource to Wrong Sphere
In cifs-utils through 6.14
CVE-2022-27239
7.8 - High
- April 27, 2022
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
Memory Corruption
A flaw was found in cifs-utils in versions before 6.13
CVE-2021-20208
6.1 - Medium
- April 19, 2021
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.
Improper Privilege Management
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Fedora Project Fedora or by Samba? Click the Watch button to subscribe.
