Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-34968

Опубликовано: 20 июл. 2023
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 5.3

Описание

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request to view the information that is part of the disclosed path.

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

2:4.18.5+dfsg-1ubuntu1
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

needs-triage

esm-infra/focal

released

2:4.15.13+dfsg-0ubuntu0.20.04.3
esm-infra/xenial

needs-triage

focal

released

2:4.15.13+dfsg-0ubuntu0.20.04.3
jammy

released

2:4.15.13+dfsg-0ubuntu1.2
kinetic

released

2:4.16.8+dfsg-0ubuntu1.2
lunar

released

2:4.17.7+dfsg-1ubuntu1.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 84%
0.02387
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-34968

CVSS3: 5.3
redhat
больше 2 лет назад

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request to view the information that is part of the disclosed path.

nvd логотип

CVE-2023-34968

CVSS3: 5.3
nvd
больше 2 лет назад

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request to view the information that is part of the disclosed path.

debian логотип

CVE-2023-34968

CVSS3: 5.3
debian
больше 2 лет назад

A path disclosure vulnerability was found in Samba. As part of the Spo ...

github логотип

GHSA-cfhp-p6xr-24g5

CVSS3: 5.3
github
больше 2 лет назад

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request to view the information that is part of the disclosed path.

fstec логотип

BDU:2024-06935

CVSS3: 5.3
fstec
больше 2 лет назад

Уязвимость пакета программ сетевого взаимодействия Samba, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальным данным

EPSS

Процентиль: 84%
0.02387
Низкий

5.3 Medium

CVSS3