cbcvebase.
CVE-2020-14342
published 2020-09-09

CVE-2020-14342: It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker…

PriorityP336high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
EPSS
0.65%
46.6th percentile
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.

Affected

17 ranges
VendorProductVersion rangeFixed in
debiancifs-utils< cifs-utils 2:6.11-1 (bookworm)cifs-utils 2:6.11-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora
msrccbl2_cifs-utils_6.8-6_on_cbl_mariner_2.0
msrccm1_cifs-utils_6.8-4_on_cbl_mariner_1.0
opensuseleap
sambacifs-utils
sambacifs-utils>= 0 < 2:6.11-12:6.11-1
sambacifs-utils>= 0 < 2:6.11-12:6.11-1
sambacifs-utils>= 0 < 2:6.11-12:6.11-1
sambacifs-utils>= 0 < 2:6.11-12:6.11-1
sambacifs-utils>= 0 < 2:6.8-1ubuntu1.22:6.8-1ubuntu1.2
sambacifs-utils>= 0 < 2:6.9-1ubuntu0.22:6.9-1ubuntu0.2
sambacifs-utils>= 0 < 2:6.14-1ubuntu0.12:6.14-1ubuntu0.1
sambacifs-utils>= 0 < 2:6.0-1ubuntu2+esm12:6.0-1ubuntu2+esm1
sambacifs-utils>= 0 < 2:6.4-1ubuntu1.1+esm12:6.4-1ubuntu1.1+esm1
sambacifs-utils5.6 – 6.10

CVSS provenance

nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv7.0HIGH
vendor_msrc7.0HIGH
vendor_debian4.4MEDIUM
vendor_redhat4.4MEDIUM
vendor_ubuntu4.4MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.