CVE-2019-10197

A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the contents of directories outside the share.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
sambasamba
4.9.0 ≤
𝑥
≤ 4.9.13
sambasamba
4.10.0 ≤
𝑥
≤ 4.10.8
sambasamba
4.9.0:rc1
sambasamba
4.9.0:rc2
sambasamba
4.9.0:rc3
sambasamba
4.9.0:rc4
sambasamba
4.9.0:rc5
sambasamba
4.10.0:rc1
sambasamba
4.10.0:rc2
sambasamba
4.10.0:rc3
sambasamba
4.10.0:rc4
sambasamba
4.11.0
sambasamba
4.11.0:rc1
sambasamba
4.11.0:rc2
sambasamba
4.11.0:rc3
canonicalubuntu_linux
19.04
debiandebian_linux
10.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
samba
bookworm
2:4.17.12+dfsg-0+deb12u1
fixed
bookworm (security)
2:4.17.12+dfsg-0+deb12u1
fixed
bullseye
2:4.13.13+dfsg-1~deb11u6
fixed
bullseye (security)
2:4.13.13+dfsg-1~deb11u6
fixed
jessie
not-affected
sid
2:4.21.1+dfsg-2
fixed
stretch
not-affected
trixie
2:4.21.1+dfsg-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
samba
bionic
not-affected
disco
Fixed 2:4.10.0+dfsg-0ubuntu2.4
released
trusty
not-affected
xenial
not-affected
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ctdb
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
ctdb-tests
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
libsmbclient
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
libsmbclient-devel
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
libwbclient
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
libwbclient-devel
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
openchange
RHEL 8
0:2.3-24.el8
fixed
python3-samba
RHEL 8
0:4.11.2-13.el8
fixed
python3-samba-test
RHEL 8
0:4.11.2-13.el8
fixed
samba
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-client
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-client-libs
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-common
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-common-libs
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-common-tools
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-dc
RHEL 7
0:4.10.4-10.el7
fixed
samba-dc-libs
RHEL 7
0:4.10.4-10.el7
fixed
samba-devel
RHEL 7
0:4.10.4-10.el7
fixed
samba-krb5-printing
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-libs
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-pidl
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-python
RHEL 7
0:4.10.4-10.el7
fixed
samba-python-test
RHEL 7
0:4.10.4-10.el7
fixed
samba-test
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-test-libs
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-vfs-glusterfs
RHEL 7
0:4.10.4-10.el7
fixed
samba-winbind
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-winbind-clients
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-winbind-krb5-locator
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
samba-winbind-modules
RHEL 7
0:4.10.4-10.el7
fixed
RHEL 8
0:4.11.2-13.el8
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
ctdb
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
ctdb-tests
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
libsmbclient
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
libsmbclient-devel
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
libwbclient
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
libwbclient-devel
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-client
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-client-libs
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-common
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-common-libs
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-common-tools
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-dc
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-dc-libs
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-debuginfo
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-devel
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-krb5-printing
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-libs
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-pidl
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-python
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-python-test
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-test
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-test-libs
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-vfs-glusterfs
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-winbind
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-winbind-clients
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-winbind-krb5-locator
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
samba-winbind-modules
Amazon Linux 1
0:4.10.4-11.51.amzn1
fixed
Amazon Linux 2
0:4.10.4-11.amzn2.0.1
fixed
References