CVE-2020-14318

medium

Description

A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1892631

https://www.samba.org/samba/security/CVE-2020-14318.html

https://security.gentoo.org/glsa/202012-24

Details

Source: MITRE

Published: 2020-12-03

Updated: 2022-01-01

Type: CWE-266

Risk Information

CVSS v2

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3

Base Score: 4.3

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score: 1.4

Exploitability Score: 2.8

Severity: MEDIUM