CVE-2021-43566

CVE-2021-43566

Name

CVE-2021-43566

Description

All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.

NVD Severity

low

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://www.samba.org/samba/history/
MISC	https://bugzilla.samba.org/show_bug.cgi?id=13979
MISC	https://www.samba.org/samba/security/CVE-2021-43566.html
CONFIRM	https://security.netapp.com/advisory/ntap-20220110-0001/

Type

URI

MISC

https://www.samba.org/samba/history/

MISC

https://bugzilla.samba.org/show_bug.cgi?id=13979

MISC

https://www.samba.org/samba/security/CVE-2021-43566.html

CONFIRM

https://security.netapp.com/advisory/ntap-20220110-0001/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:samba:samba::::::::`	samba	>= None	< 4.13.16

CPE URI

Source package

Min version

Max version

cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*

samba

>= None

< 4.13.16

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
samba	edge-main	4.8.7-r0	None	possibly vulnerable
samba	edge-main	4.8.4-r0	None	possibly vulnerable
samba	edge-main	4.8.11-r0	None	possibly vulnerable
samba	edge-main	4.7.6-r0	None	possibly vulnerable
samba	edge-main	4.7.3-r0	None	possibly vulnerable
samba	edge-main	4.7.0-r0	None	possibly vulnerable
samba	edge-main	4.6.1-r0	None	possibly vulnerable
samba	edge-main	4.12.9-r0	None	possibly vulnerable
samba	edge-main	4.12.7-r0	None	possibly vulnerable
samba	edge-main	4.12.5-r0	None	possibly vulnerable
samba	edge-main	4.12.2-r0	None	possibly vulnerable
samba	edge-main	4.11.5-r0	None	possibly vulnerable
samba	edge-main	4.11.3-r0	None	possibly vulnerable
samba	edge-main	4.11.2-r0	None	possibly vulnerable
samba	edge-main	4.10.8-r0	None	possibly vulnerable
samba	edge-main	4.10.5-r0	None	possibly vulnerable
samba	edge-main	4.10.3-r0	None	possibly vulnerable
samba	3.22-main	4.8.7-r0	None	possibly vulnerable
samba	3.22-main	4.8.4-r0	None	possibly vulnerable
samba	3.22-main	4.8.11-r0	None	possibly vulnerable
samba	3.22-main	4.7.6-r0	None	possibly vulnerable
samba	3.22-main	4.7.3-r0	None	possibly vulnerable
samba	3.22-main	4.7.0-r0	None	possibly vulnerable
samba	3.22-main	4.6.1-r0	None	possibly vulnerable
samba	3.22-main	4.12.9-r0	None	possibly vulnerable
samba	3.22-main	4.12.7-r0	None	possibly vulnerable
samba	3.22-main	4.12.5-r0	None	possibly vulnerable
samba	3.22-main	4.12.2-r0	None	possibly vulnerable
samba	3.22-main	4.11.5-r0	None	possibly vulnerable
samba	3.22-main	4.11.3-r0	None	possibly vulnerable
samba	3.22-main	4.11.2-r0	None	possibly vulnerable
samba	3.22-main	4.10.8-r0	None	possibly vulnerable
samba	3.22-main	4.10.5-r0	None	possibly vulnerable
samba	3.22-main	4.10.3-r0	None	possibly vulnerable
samba	3.21-main	4.8.7-r0	None	possibly vulnerable
samba	3.21-main	4.8.4-r0	None	possibly vulnerable
samba	3.21-main	4.8.11-r0	None	possibly vulnerable
samba	3.21-main	4.7.6-r0	None	possibly vulnerable
samba	3.21-main	4.7.3-r0	None	possibly vulnerable
samba	3.21-main	4.7.0-r0	None	possibly vulnerable
samba	3.21-main	4.6.1-r0	None	possibly vulnerable
samba	3.21-main	4.12.9-r0	None	possibly vulnerable
samba	3.21-main	4.12.7-r0	None	possibly vulnerable
samba	3.21-main	4.12.5-r0	None	possibly vulnerable
samba	3.21-main	4.12.2-r0	None	possibly vulnerable
samba	3.21-main	4.11.5-r0	None	possibly vulnerable
samba	3.21-main	4.11.3-r0	None	possibly vulnerable
samba	3.21-main	4.11.2-r0	None	possibly vulnerable
samba	3.21-main	4.10.8-r0	None	possibly vulnerable
samba	3.21-main	4.10.5-r0	None	possibly vulnerable
samba	3.21-main	4.10.3-r0	None	possibly vulnerable
samba	3.20-main	4.8.7-r0	None	possibly vulnerable
samba	3.20-main	4.8.4-r0	None	possibly vulnerable
samba	3.20-main	4.8.11-r0	None	possibly vulnerable
samba	3.20-main	4.7.6-r0	None	possibly vulnerable
samba	3.20-main	4.7.3-r0	None	possibly vulnerable
samba	3.20-main	4.7.0-r0	None	possibly vulnerable
samba	3.20-main	4.6.1-r0	None	possibly vulnerable
samba	3.20-main	4.12.9-r0	None	possibly vulnerable
samba	3.20-main	4.12.7-r0	None	possibly vulnerable
samba	3.20-main	4.12.5-r0	None	possibly vulnerable
samba	3.20-main	4.12.2-r0	None	possibly vulnerable
samba	3.20-main	4.11.5-r0	None	possibly vulnerable
samba	3.20-main	4.11.3-r0	None	possibly vulnerable
samba	3.20-main	4.11.2-r0	None	possibly vulnerable
samba	3.20-main	4.10.8-r0	None	possibly vulnerable
samba	3.20-main	4.10.5-r0	None	possibly vulnerable
samba	3.20-main	4.10.3-r0	None	possibly vulnerable
samba	3.19-main	4.8.7-r0	None	possibly vulnerable
samba	3.19-main	4.8.4-r0	None	possibly vulnerable
samba	3.19-main	4.8.11-r0	None	possibly vulnerable
samba	3.19-main	4.7.6-r0	None	possibly vulnerable
samba	3.19-main	4.7.3-r0	None	possibly vulnerable
samba	3.19-main	4.7.0-r0	None	possibly vulnerable
samba	3.19-main	4.6.1-r0	None	possibly vulnerable
samba	3.19-main	4.12.9-r0	None	possibly vulnerable
samba	3.19-main	4.12.7-r0	None	possibly vulnerable
samba	3.19-main	4.12.5-r0	None	possibly vulnerable
samba	3.19-main	4.12.2-r0	None	possibly vulnerable
samba	3.19-main	4.11.5-r0	None	possibly vulnerable
samba	3.19-main	4.11.3-r0	None	possibly vulnerable
samba	3.19-main	4.11.2-r0	None	possibly vulnerable
samba	3.19-main	4.10.8-r0	None	possibly vulnerable
samba	3.19-main	4.10.5-r0	None	possibly vulnerable
samba	3.19-main	4.10.3-r0	None	possibly vulnerable
samba	3.12-main	4.12.15-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages