CVE-2021-44141

CWE-200Information ExposureCWE-597 documents7 sources
Severity
4.3MEDIUM
EPSS
0.3%
top 45.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Samba SambaFedoraproject FedoraRedhat Storage
Timeline
PublishedFeb 21
Latest updateFeb 22

Description

All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition. SMB1 with unix extensions has to be enabled in order for this attack to succeed.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages4 packages

NVDsamba/samba< 4.15.5
Debiansamba< 2:4.16.0+dfsg-2+2
CVEListV5sambaAll versions of Samba prior to 4.15.5

Also affects: Fedora 34, 35

🔴Vulnerability Details

3
GHSA
GHSA-fmfh-pcgm-2499: All versions of Samba prior to 42022-02-22
OSV
CVE-2021-44141: All versions of Samba prior to 42022-02-21
CVEList
CVE-2021-44141: All versions of Samba prior to 42022-02-21

📋Vendor Advisories

3
Microsoft
All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the2022-02-08
Red Hat
samba: Information leak via symlinks of existance of files or directories outside of the exported share2022-01-31
Debian
CVE-2021-44141: samba - All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using...2021