CVE-2017-2619

high-risk

Published 2018-03-12

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

Do I need to act?

40.7% chance of exploitation in next 30 days

EPSS score — higher than 59% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

41740

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / HIGH complexity

Affected Products (4)

Samba

Debian Linux

Enterprise Linux

Affected Vendors

Debian Redhat Samba

References (22)

Third Party Advisory http://www.securityfocus.com/bid/97033

Third Party Advisory http://www.securitytracker.com/id/1038117

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:1265

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2338

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2778

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2789

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1429472

Third Party Advisory https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na...

Third Party Advisory https://www.debian.org/security/2017/dsa-3816

Exploit https://www.exploit-db.com/exploits/41740/

Vendor Advisory https://www.samba.org/samba/security/CVE-2017-2619.html

Third Party Advisory http://www.securityfocus.com/bid/97033

Third Party Advisory http://www.securitytracker.com/id/1038117

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:1265

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2338

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2778

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:2789

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1429472

Third Party Advisory https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na...

Third Party Advisory https://www.debian.org/security/2017/dsa-3816

and 2 more references

/ 100

high-risk

Severity 22/34 · High

Exploitability 24/34 · High

Exposure 10/34 · Low