By the Year
In 2021 there have been 1 vulnerability in Secureauth Impacket with an average score of 9.8 out of ten. Impacket did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2021 as compared to last year.
It may take a day or so for new Impacket vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Secureauth Impacket Security Vulnerabilities
Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22
9.8 - Critical
- May 05, 2021
Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. An attacker that connects to a running smbserver instance can list and write to arbitrary files via ../ directory traversal. This could potentially be abused to achieve arbitrary code execution by replacing /etc/shadow or an SSH authorized key.