Vulnerability Description
All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samba | Samba | < 4.13.16 |
Related Weaknesses (CWE)
References
- https://bugzilla.samba.org/show_bug.cgi?id=13979ExploitIssue TrackingVendor Advisory
- https://security.netapp.com/advisory/ntap-20220110-0001/Third Party Advisory
- https://www.samba.org/samba/security/CVE-2021-43566.htmlPatchVendor Advisory
- https://bugzilla.samba.org/show_bug.cgi?id=13979ExploitIssue TrackingVendor Advisory
- https://security.netapp.com/advisory/ntap-20220110-0001/Third Party Advisory
- https://www.samba.org/samba/security/CVE-2021-43566.htmlPatchVendor Advisory
FAQ
What is CVE-2021-43566?
CVE-2021-43566 is a vulnerability with a CVSS score of 2.5 (LOW). All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the sha...
How severe is CVE-2021-43566?
CVE-2021-43566 has been rated LOW with a CVSS base score of 2.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-43566?
Check the references section above for vendor advisories and patch information. Affected products include: Samba Samba.