cbcvebase.
CVE-2012-1586
published 2012-08-27

CVE-2012-1586: mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which…

PriorityP410low2.1CVSS 2.0
AVLACLAuNCPINAN
EXPLOIT
EPSS
0.73%
49.6th percentile
mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.

Affected

6 ranges
VendorProductVersion rangeFixed in
debiancifs-utils< cifs-utils 2:5.3-2 (bookworm)cifs-utils 2:5.3-2 (bookworm)
debiancifs-utils
sambacifs-utils>= 0 < 2:5.3-22:5.3-2
sambacifs-utils>= 0 < 2:5.3-22:5.3-2
sambacifs-utils>= 0 < 2:5.3-22:5.3-2
sambacifs-utils>= 0 < 2:5.3-22:5.3-2

CVSS provenance

nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
osv2.1LOW
vendor_debian2.1LOW
vendor_redhat2.1LOW
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.