PT-2021-8093 · Samba+8 · Samba+8

Huzaifa S. Sidhpurwala

Published

2021-09-20

Updated

2024-11-15

CVE-2021-20316

CVSS v3.1

6.8

Medium

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Samba (affected versions not specified)

Description The issue is related to errors in synchronization when using a shared resource due to incorrect metadata handling. This allows an authenticated attacker with permissions to read or modify share metadata to perform operations outside of the share, potentially leading to unauthorized access to confidential data and disruption of data integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2022:2074

ALT-PU-2022-2144

ALT-PU-2022-2438

ALT-PU-2024-14683

AZL-10652

AZL-37001

BDU:2024-06961

CESA-2022_2074

CVE-2021-20316

ECHO-4D1B-025A-DC40

MGASA-2022-0054

OPENSUSE-SU-2022:0283-1

OPENSUSE-SU-2022_0283-1

RHSA-2022:1756

RHSA-2022:2074

RHSA-2022_2074

RLSA-2022:2074

SUSE-SU-2022:0283-1

SUSE-SU-2022:0323-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Red Hat

Rocky Linux

Samba

Suse

PT-2021-8093 · Samba+8 · Samba+8

CVE-2021-20316

Weakness Enumeration

Related Identifiers

Affected Products

References · 89