Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Informations | |||
|---|---|---|---|
| Name | CVE-2021-44142 | First vendor Publication | 2022-02-21 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | |||
|---|---|---|---|
| Overall CVSS Score | 8.8 | ||
| Base Score | 8.8 | Environmental Score | 8.8 |
| impact SubScore | 5.9 | Temporal Score | 8.8 |
| Exploitabality Sub Score | 2.8 | ||
| Attack Vector | Network | Attack Complexity | Low |
| Privileges Required | Low | User Interaction | None |
| Scope | Unchanged | Confidentiality Impact | High |
| Integrity Impact | High | Availability Impact | High |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 8 | Authentication | Requires single instance |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44142 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 50 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
| 50 % | CWE-125 | Out-of-bounds Read |
CPE : Common Platform Enumeration
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2025-01-15 13:38:50 |
|
| 2025-01-15 02:35:37 |
|
| 2024-11-25 09:56:03 |
|
| 2024-08-02 13:29:56 |
|
| 2024-08-02 01:26:59 |
|
| 2024-02-02 02:29:43 |
|
| 2024-02-01 12:25:08 |
|
| 2023-11-07 21:32:44 |
|
| 2023-09-19 09:28:19 |
|
| 2023-09-05 13:24:12 |
|
| 2023-09-05 01:24:37 |
|
| 2023-09-02 13:22:32 |
|
| 2023-09-02 01:25:00 |
|
| 2023-08-12 13:28:31 |
|
| 2023-08-12 01:24:14 |
|
| 2023-08-11 13:20:43 |
|
| 2023-08-11 01:25:02 |
|
| 2023-08-06 13:18:39 |
|
| 2023-08-06 01:23:57 |
|
| 2023-08-04 13:19:01 |
|
| 2023-08-04 01:24:19 |
|
| 2023-07-14 13:19:05 |
|
| 2023-07-14 01:24:05 |
|
| 2023-03-29 02:21:03 |
|
| 2023-03-28 12:24:17 |
|
| 2022-10-11 13:10:23 |
|
| 2022-10-11 01:23:41 |
|
| 2022-02-23 21:22:56 |
|
| 2022-02-22 13:22:54 |
|
| 2022-02-21 21:22:52 |
|
