threat
engine
.sh
Back
·
··:··
Home
/
Product
/
samba cifs utils
Product
samba cifs utils
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2022-29869
< 6.15
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is
5.3
MEDIUM
CVE-2022-27239
< 6.15
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to loca
7.8
HIGH
CVE-2021-20208
>= 4.0 and < 6.13
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can u
6.1
MEDIUM
CVE-2020-14342
>= 5.6 and <= 6.10
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject ar
4.4
MEDIUM
CVE-2014-2830
<= 6.3
Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attacker
CVE-2012-1586
all versions
mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin