CVE-2021-44142
| CVE Published | 2022-02-21 |
|---|---|
| Related CWE(s) | CWE-125: Out-of-bounds Read, CWE-787: Out-of-bounds Write |
| Related Vendor(s) | fedoraproject, redhat, samba, canonical, synology, debian |
| Related Product(s) | fedora, enterprise_linux_for_scientific_computing, codeready_linux_builder, enterprise_linux, diskstation_manager, enterprise_linux_server_update_services_for_sap_solutions, virtualization_host, enterprise_linux_desktop, enterprise_linux_workstation, enterprise_linux_for_power_big_endian, enterprise_linux_resilient_storage, enterprise_linux_eus, enterprise_linux_for_power_little_endian_eus, debian_linux, ubuntu_linux, enterprise_linux_server_aus, enterprise_linux_for_ibm_z_systems, samba, enterprise_linux_for_power_little_endian, enterprise_linux_server, gluster_storage, enterprise_linux_for_ibm_z_systems_eus, enterprise_linux_server_tus |
| CVSS 3 Base Score | 8.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph
Threat Reports Related to CVE-2021-44142
Report
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
This cybersecurity advisory from the U.S. Federal Bureau of Investigation (FBI) and its partners, highlights the cyber espionage activities of the ...