CVE-2019-10218

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacker could use this vulnerability to create files outside of the current working directory using the privileges of the client user.

References

https://www.samba.org/samba/security/CVE-2019-10218.html

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10218

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00015.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/UMIYCYXCPRTVCVZ3TP6ZGPJ6RZS3IX4G/

https://lists.fedoraproject.org/archives/list/[email protected]/message/OKPYHDFI7HRELVXBE5J4MTGSI35AKFBI/

https://lists.fedoraproject.org/archives/list/[email protected]/message/XQ3IUACPZJXSC4OM6P2V4IC4QMZQZWPD/

https://www.synology.com/security/advisory/Synology_SA_19_35

https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html

Details

Source: MITRE

Published: 2019-11-06

Updated: 2021-05-29

Type: CWE-22

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 6.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Tenable Plugins

View all (29 total)

IDNameProductFamilySeverity
150624SUSE SLES11 Security Update : samba (SUSE-SU-2019:14202-1)NessusSuSE Local Security Checks
medium
150107Debian DLA-2668-1 : samba security updateNessusDebian Local Security Checks
medium
145876CentOS 8 : samba (CESA-2020:1878)NessusCentOS Local Security Checks
critical
145703NewStart CGSL CORE 5.05 / MAIN 5.05 : samba Multiple Vulnerabilities (NS-SA-2020-0106)NessusNewStart CGSL Local Security Checks
critical
143984NewStart CGSL CORE 5.04 / MAIN 5.04 : samba Multiple Vulnerabilities (NS-SA-2020-0072)NessusNewStart CGSL Local Security Checks
critical
143012RHEL 8 : samba (RHSA-2020:1878)NessusRed Hat Local Security Checks
critical
140877EulerOS 2.0 SP3 : samba (EulerOS-SA-2020-2110)NessusHuawei Local Security Checks
high
140088Amazon Linux AMI : ctdb (ALAS-2020-1424)NessusAmazon Linux Local Security Checks
critical
138625Amazon Linux 2 : samba (ALAS-2020-1459)NessusAmazon Linux Local Security Checks
critical
135836Scientific Linux Security Update : samba on SL7.x x86_64 (20200407)NessusScientific Linux Local Security Checks
critical
135334CentOS 7 : samba (CESA-2020:1084)NessusCentOS Local Security Checks
critical
135054RHEL 7 : samba (RHSA-2020:1084)NessusRed Hat Local Security Checks
critical
134860RHEL 7 : samba (RHSA-2020:0943)NessusRed Hat Local Security Checks
medium
134736EulerOS Virtualization 3.0.2.2 : samba (EulerOS-SA-2020-1270)NessusHuawei Local Security Checks
medium
134520EulerOS Virtualization for ARM 64 3.0.2.0 : samba (EulerOS-SA-2020-1231)NessusHuawei Local Security Checks
medium
132794EulerOS Virtualization for ARM 64 3.0.5.0 : samba (EulerOS-SA-2020-1040)NessusHuawei Local Security Checks
medium
132625EulerOS 2.0 SP8 : samba (EulerOS-SA-2020-1032)NessusHuawei Local Security Checks
medium
131821EulerOS 2.0 SP5 : samba (EulerOS-SA-2019-2547)NessusHuawei Local Security Checks
medium
131040Fedora 29 : 2:samba (2019-703e299870)NessusFedora Local Security Checks
medium
130987Fedora 31 : 2:samba (2019-57d43f3b58)NessusFedora Local Security Checks
medium
130889openSUSE Security Update : samba (openSUSE-2019-2458)NessusSuSE Local Security Checks
medium
130583SUSE SLES12 Security Update : samba (SUSE-SU-2019:2893-1)NessusSuSE Local Security Checks
medium
130581openSUSE Security Update : samba (openSUSE-2019-2442)NessusSuSE Local Security Checks
medium
130512SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2019:2890-1)NessusSuSE Local Security Checks
medium
130451SUSE SLES12 Security Update : samba (SUSE-SU-2019:2875-1)NessusSuSE Local Security Checks
medium
130439FreeBSD : samba -- multiple vulnerabilities (50a1bbc9-fb80-11e9-9e70-005056a311d1)NessusFreeBSD Local Security Checks
medium
130426SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2019:2868-1)NessusSuSE Local Security Checks
medium
130425SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2019:2866-1)NessusSuSE Local Security Checks
medium
130392Ubuntu 16.04 LTS / 18.04 LTS / 19.04 / 19.10 : Samba vulnerabilities (USN-4167-1)NessusUbuntu Local Security Checks
medium