CVE-2020-14318
Published: 29 October 2020
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker.
Priority
Status
Package | Release | Status |
---|---|---|
samba Launchpad, Ubuntu, Debian |
bionic |
Released
(2:4.7.6+dfsg~ubuntu-0ubuntu2.21)
|
focal |
Released
(2:4.11.6+dfsg-0ubuntu1.6)
|
|
groovy |
Released
(2:4.12.5+dfsg-3ubuntu4.1)
|
|
hirsute |
Released
(2:4.12.5+dfsg-3ubuntu4.1)
|
|
trusty |
Released
(2:4.3.11+dfsg-0ubuntu0.14.04.20+esm11)
Available with Ubuntu Pro or Ubuntu Pro (Infra-only) |
|
upstream |
Released
(4.11.15,4.12.9,4.13.1)
|
|
xenial |
Released
(2:4.3.11+dfsg-0ubuntu0.16.04.32)
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 4.3 |
Attack vector | Network |
Attack complexity | Low |
Privileges required | Low |
User interaction | None |
Scope | Unchanged |
Confidentiality | Low |
Integrity impact | None |
Availability impact | None |
Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |