CVE-2020-14318
published 2020-12-03CVE-2020-14318: A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | samba | < samba 2:4.13.2+dfsg-2 (bookworm) | samba 2:4.13.2+dfsg-2 (bookworm) |
| msrc | azl3_samba_4.18.3-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_samba_4.12.5-6_on_cbl_mariner_2.0 | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | storage | — | — |
| samba | samba | — | — |
| samba | samba | >= 0 < 2:4.13.2+dfsg-2 | 2:4.13.2+dfsg-2 |
| samba | samba | >= 0 < 2:4.13.2+dfsg-2 | 2:4.13.2+dfsg-2 |
| samba | samba | >= 0 < 2:4.13.2+dfsg-2 | 2:4.13.2+dfsg-2 |
| samba | samba | >= 0 < 2:4.13.2+dfsg-2 | 2:4.13.2+dfsg-2 |
| samba | samba | >= 0 < 2:4.3.11+dfsg-0ubuntu0.16.04.32 | 2:4.3.11+dfsg-0ubuntu0.16.04.32 |
| samba | samba | >= 0 < 2:4.7.6+dfsg~ubuntu-0ubuntu2.21 | 2:4.7.6+dfsg~ubuntu-0ubuntu2.21 |
| samba | samba | >= 0 < 2:4.11.6+dfsg-0ubuntu1.6 | 2:4.11.6+dfsg-0ubuntu1.6 |
| samba | samba | >= 0 < 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11 | 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11 |
| samba | samba | >= 3.6.0 < 4.11.15 | 4.11.15 |
| samba | samba | >= 4.12.0 < 4.12.9 | 4.12.9 |
| samba | samba | >= 4.13.0 < 4.13.1 | 4.13.1 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
osv4.3MEDIUM