CVE-2021-44141

Advisory lineage Upstream: 0 Downstream: 10

Downstream

ALPINE-CVE-2021-44141 DEBIAN-CVE-2021-44141 MGASA-2022-0054 OPENSUSE-SU-2022:0283-1 OPENSUSE-SU-2024:11807-1 RHSA-2022:1756

Modified

Published: 21 Feb 2022, 00:00

Last modified:04 Aug 2024, 04:17

Vulnerability Summary

Overall Risk (default)

low

17/100

CVSS Score

4.3 MEDIUM

v3.1 (nvd)

EPSS Score

0.31% LOW

0% probability +0.02%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

21 Feb 2022, 00:00

Published

Vulnerability first disclosed

04 Aug 2024, 04:17

Last Modified

Vulnerability information updated

Description

All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition. SMB1 with unix extensions has to be enabled in order for this attack to succeed.

CVSS Metrics

v3.1•MEDIUM•Score: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
v2.0•LOW•Score: 3.5AV:N/AC:M/Au:S/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.31%• Percentile: 54%

Techniques & Countermeasures

CWE-59•Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CWE-200•Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Affected Systems

fedoraproject•fedora
34 | 35
redhat•storage
3.0
samba•samba
< 4.15.5