CVE-2022-22995
published 2022-03-25CVE-2022-22995: The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of…
PriorityP358critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.66%
83.8th percentile
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | netatalk | < netatalk 3.1.12~ds-8+deb11u2 (bullseye) | netatalk 3.1.12~ds-8+deb11u2 (bullseye) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| netatalk | netatalk | < 3.1.18 | 3.1.18 |
| netatalk | netatalk | >= 0 < 3.1.12~ds-8+deb11u2 | 3.1.12~ds-8+deb11u2 |
| netatalk | netatalk | >= 0 < 3.1.18~ds-1 | 3.1.18~ds-1 |
| netatalk | netatalk | >= 0 < 3.1.18~ds-1 | 3.1.18~ds-1 |
| western_digital | my_cloud | >= My Cloud OS 5 < 5.19.117 | 5.19.117 |
| western_digital | my_cloud_home | >= My Cloud Home < 7.16-220 | 7.16-220 |
| westerndigital | my_cloud_dl2100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_dl4100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_ex2100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_ex2_ultra_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_ex4100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_home_firmware | < 7.16-220 | 7.16-220 |
| westerndigital | my_cloud_mirror_gen_2_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_pr2100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | my_cloud_pr4100_firmware | < 5.19.117 | 5.19.117 |
| westerndigital | wd_cloud_firmware | < 5.19.117 | 5.19.117 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Netatalk vulnerabilities
vendor_ubuntu·2024-05-28
CVE-2022-22995 Netatalk vulnerabilities
Title: Netatalk vulnerabilities
Summary: Netatalk could allow arbitrary code execution if it receives a specially
crafted input.
It was discovered that Netatalk did not properly protect an SMB and AFP
default configuration. A remote attacker could possibly use this issue to
execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2022-22995: netatalk - The combination of primitives offered by SMB and AFP in their default configurat...
vendor_debian·2022·CVSS 10.0
CVE-2022-22995 [CRITICAL] CVE-2022-22995: netatalk - The combination of primitives offered by SMB and AFP in their default configurat...
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
Scope: local
bullseye: resolved (fixed in 3.1.12~ds-8+deb11u2)
forky: resolved (fixed in 3.1.18~ds-1)
sid: resolved (fixed in 3.1.18~ds-1)
trixie: resolved (fixed in 3.1.18~ds-1)
GHSA
GHSA-wc8x-f5rv-3653: The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files
ghsa_unreviewed·2022-03-27
CVE-2022-22995 [CRITICAL] CWE-59 GHSA-wc8x-f5rv-3653: The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
OSV
CVE-2022-22995: The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files
osv·2022-03-25·CVSS 9.8
CVE-2022-22995 [CRITICAL] CVE-2022-22995: The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.debian.org/debian-lts-announce/2024/01/msg00000.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/55ROUJI22SHZX5EM23QAILZHI67EZQKW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5CZZLFOTUP3QYHGHSDUNENGSLPJ6KGO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XO34FWOIJI6V6PH2XY52WNBBARVWPJG2/https://security.gentoo.org/glsa/202311-02https://www.westerndigital.com/support/product-security/wdc-22005-netatalk-security-vulnerabilitieshttps://lists.debian.org/debian-lts-announce/2024/01/msg00000.htmlhttps://lists.debian.org/debian-lts-announce/2024/11/msg00026.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/55ROUJI22SHZX5EM23QAILZHI67EZQKW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5CZZLFOTUP3QYHGHSDUNENGSLPJ6KGO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XO34FWOIJI6V6PH2XY52WNBBARVWPJG2/https://security.gentoo.org/glsa/202311-02https://www.westerndigital.com/support/product-security/wdc-22005-netatalk-security-vulnerabilities
2022-03-25
Published