CVE-2019-10218Path Traversal in Samba

CWE-22Path Traversal11 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
4.5%
top 10.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SambaDebian SambaFedoraproject Fedora
Timeline
PublishedNov 6
Latest updateMay 24

Description

A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacker could use this vulnerability to create files outside of the current working directory using the privileges of the client user.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages5 packages

NVDsamba/samba4.10.04.10.10+2
debiandebian/samba< samba 2:4.11.1+dfsg-2 (bookworm)
Debiansamba/samba< 2:4.11.1+dfsg-2+3
Ubuntusamba/samba< 2:4.3.11+dfsg-0ubuntu0.16.04.23+2
CVEListV5samba/sambaall samba versions before samba 4.11.2, 4.10.10 and 4.9.15

Also affects: Fedora 29, 31

🔴Vulnerability Details

4
GHSA
GHSA-mjrv-7h6w-94x4: A flaw was found in the samba client, all samba versions before samba 42022-05-24
OSV
CVE-2019-10218: A flaw was found in the samba client, all samba versions before samba 42019-11-06
OSV
samba vulnerabilities2019-10-29
OSV
samba vulnerabilities2019-10-29

📋Vendor Advisories

4
Red Hat
samba: smb client vulnerable to filenames containing path separators2019-10-29
Ubuntu
Samba vulnerabilities2019-10-29
Ubuntu
Samba vulnerabilities2019-10-29
Debian
CVE-2019-10218: samba - A flaw was found in the samba client, all samba versions before samba 4.11.2, 4....2019

💬Community

2
Bugzilla
CVE-2019-10218 samba: smb client vulnerable to filenames containing path separators [fedora-all]2019-10-29
Bugzilla
CVE-2019-10218 samba: smb client vulnerable to filenames containing path separators2019-10-18