CVE-2020-14342
published 2020-09-09CVE-2020-14342: It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker…
PriorityP336high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
EPSS
0.65%
46.6th percentile
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | cifs-utils | < cifs-utils 2:6.11-1 (bookworm) | cifs-utils 2:6.11-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | cbl2_cifs-utils_6.8-6_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_cifs-utils_6.8-4_on_cbl_mariner_1.0 | — | — |
| opensuse | leap | — | — |
| samba | cifs-utils | — | — |
| samba | cifs-utils | >= 0 < 2:6.11-1 | 2:6.11-1 |
| samba | cifs-utils | >= 0 < 2:6.11-1 | 2:6.11-1 |
| samba | cifs-utils | >= 0 < 2:6.11-1 | 2:6.11-1 |
| samba | cifs-utils | >= 0 < 2:6.11-1 | 2:6.11-1 |
| samba | cifs-utils | >= 0 < 2:6.8-1ubuntu1.2 | 2:6.8-1ubuntu1.2 |
| samba | cifs-utils | >= 0 < 2:6.9-1ubuntu0.2 | 2:6.9-1ubuntu0.2 |
| samba | cifs-utils | >= 0 < 2:6.14-1ubuntu0.1 | 2:6.14-1ubuntu0.1 |
| samba | cifs-utils | >= 0 < 2:6.0-1ubuntu2+esm1 | 2:6.0-1ubuntu2+esm1 |
| samba | cifs-utils | >= 0 < 2:6.4-1ubuntu1.1+esm1 | 2:6.4-1ubuntu1.1+esm1 |
| samba | cifs-utils | 5.6 – 6.10 | — |
CVSS provenance
nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv7.0HIGH
vendor_msrc7.0HIGH
vendor_debian4.4MEDIUM
vendor_redhat4.4MEDIUM
vendor_ubuntu4.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
cifs-utils vulnerabilities
vendor_ubuntu·2025-08-07·CVSS 4.4
CVE-2021-20208 [MEDIUM] cifs-utils vulnerabilities
Title: cifs-utils vulnerabilities
Summary: Several security issues were fixed in cifs-utils.
Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a
password. In certain environments, a local attacker could possibly use this
issue to escalate privileges. (CVE-2020-14342)
It was discovered that cifs-utils incorrectly used host credentials when
mounting a krb5 CIFS file system from within a container. An attacker
inside a container could possibly use this issue to obtain access to
sensitive information. (CVE-2021-20208)
It was discovered that cifs-utils incorrectly handled certain command-line
arguments. A local attacker could possibly use this issue to obtain root
privileges. (CVE-2022-27239)
It was discovered that cifs-utils incorrectly handled verbose logging. A
l
Ubuntu
cifs-utils vulnerabilities
vendor_ubuntu·2022-06-02·CVSS 4.4
CVE-2020-14342 [MEDIUM] cifs-utils vulnerabilities
Title: cifs-utils vulnerabilities
Summary: Several security issues were fixed in cifs-utils.
Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a
password. In certain environments, a local attacker could possibly use this
issue to escalate privileges. This issue only affected Ubuntu 18.04 LTS and
Ubuntu 20.04 LTS. (CVE-2020-14342)
It was discovered that cifs-utils incorrectly used host credentials when
mounting a krb5 CIFS file system from within a container. An attacker
inside a container could possibly use this issue to obtain access to
sensitive information. This issue only affected Ubuntu 18.04 LTS and Ubuntu
20.04 LTS. (CVE-2021-20208)
It was discovered that cifs-utils incorrectly handled certain command-line
arguments. A local attacker could possibly use th
Microsoft
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special pe
vendor_msrc·2020-09-08·CVSS 7.0
CVE-2020-14342 [MEDIUM] CWE-78 It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special pe
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission such as via sudo rules could use this flaw to escalate their privileges.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for mor
Red Hat
cifs-utils: shell command injection in mount.cifs
vendor_redhat·2020-09-03·CVSS 4.4
CVE-2020-14342 [MEDIUM] CWE-78 cifs-utils: shell command injection in mount.cifs
cifs-utils: shell command injection in mount.cifs
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.
A flaw was found in cifs-utils' mount.cifs where it was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. This flaw allows an attacker who can invoke mount.cifs with special permission, such as via sudo rules, to escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Statement: In order to exploit this flaw, the attacker would
Debian
CVE-2020-14342: cifs-utils - It was found that cifs-utils' mount.cifs was invoking a shell when requesting th...
vendor_debian·2020·CVSS 4.4
CVE-2020-14342 [MEDIUM] CVE-2020-14342: cifs-utils - It was found that cifs-utils' mount.cifs was invoking a shell when requesting th...
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.
Scope: local
bookworm: resolved (fixed in 2:6.11-1)
bullseye: resolved (fixed in 2:6.11-1)
forky: resolved (fixed in 2:6.11-1)
sid: resolved (fixed in 2:6.11-1)
trixie: resolved (fixed in 2:6.11-1)
OSV
cifs-utils vulnerabilities
osv·2025-08-07·CVSS 7.0
CVE-2020-14342 [HIGH] cifs-utils vulnerabilities
cifs-utils vulnerabilities
Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a
password. In certain environments, a local attacker could possibly use this
issue to escalate privileges. (CVE-2020-14342)
It was discovered that cifs-utils incorrectly used host credentials when
mounting a krb5 CIFS file system from within a container. An attacker
inside a container could possibly use this issue to obtain access to
sensitive information. (CVE-2021-20208)
It was discovered that cifs-utils incorrectly handled certain command-line
arguments. A local attacker could possibly use this issue to obtain root
privileges. (CVE-2022-27239)
It was discovered that cifs-utils incorrectly handled verbose logging. A
local attacker could possibly use this issue to obtain sensitive
inf
OSV
cifs-utils vulnerabilities
osv·2022-06-02·CVSS 7.0
CVE-2020-14342 [HIGH] cifs-utils vulnerabilities
cifs-utils vulnerabilities
Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a
password. In certain environments, a local attacker could possibly use this
issue to escalate privileges. This issue only affected Ubuntu 18.04 LTS and
Ubuntu 20.04 LTS. (CVE-2020-14342)
It was discovered that cifs-utils incorrectly used host credentials when
mounting a krb5 CIFS file system from within a container. An attacker
inside a container could possibly use this issue to obtain access to
sensitive information. This issue only affected Ubuntu 18.04 LTS and Ubuntu
20.04 LTS. (CVE-2021-20208)
It was discovered that cifs-utils incorrectly handled certain command-line
arguments. A local attacker could possibly use this issue to obtain root
privileges. (CVE-2022-27239)
It was discov
GHSA
GHSA-7mmj-72wg-6gpv: It was found that cifs-utils' mount
ghsa_unreviewed·2022-05-24
CVE-2020-14342 [MEDIUM] CWE-78 GHSA-7mmj-72wg-6gpv: It was found that cifs-utils' mount
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.
OSV
CVE-2020-14342: It was found that cifs-utils' mount
osv·2020-09-09·CVSS 7.0
CVE-2020-14342 [HIGH] CVE-2020-14342: It was found that cifs-utils' mount
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-14342 cifs-utils: shell command injection in mount.cifs [fedora-all]
bugzilla·2020-09-07·CVSS 4.4
CVE-2020-14342 [MEDIUM] CVE-2020-14342 cifs-utils: shell command injection in mount.cifs [fedora-all]
CVE-2020-14342 cifs-utils: shell command injection in mount.cifs [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
Bugzilla
CVE-2020-14342 cifs-utils: shell command injection in mount.cifs
bugzilla·2020-07-27·CVSS 4.4
CVE-2020-14342 [MEDIUM] CVE-2020-14342 cifs-utils: shell command injection in mount.cifs
CVE-2020-14342 cifs-utils: shell command injection in mount.cifs
A user controlling the username mount option can embed shell commands that will be run in the context of the calling user.
Discussion:
Statement:
In order to exploit this flaw, the attacker would need to be able to inject a specially crafted username into the command run by root. This requires a specific setup (e.g.: sudo rules, etc.).
As a result, the vulnerability is considered as low severity.
---
Upstream fix:
https://git.samba.org/cifs-utils.git/?p=cifs-utils.git;a=commit;h=48a654e2e763fce24c22e1b9c695b42804bbdd4a
---
Acknowledgments:
Name: Aurélien Aptel (SUSE Labs Samba Team)
Upstream: Vadim Lebedev
---
Created cifs-utils tracking bugs for this issue:
Affects: fedora-all [bug 1876400]
---
External Referen
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00109.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14342https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DUMRICFXJVCBBOSKZSKT3HFVQM6VPJU3/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBNFSTJOQWVPFZAUJNNMAPY45PW5RTTE/https://lists.samba.org/archive/samba-technical/2020-September/135747.htmlhttps://security.gentoo.org/glsa/202009-16http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00109.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14342https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DUMRICFXJVCBBOSKZSKT3HFVQM6VPJU3/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBNFSTJOQWVPFZAUJNNMAPY45PW5RTTE/https://lists.samba.org/archive/samba-technical/2020-September/135747.htmlhttps://security.gentoo.org/glsa/202009-16
2020-09-09
Published