CVE-2026-1933

EUVD-2026-32275

27.05.2026, 14:16

A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-only exports. This could allow modification of SMB-visible file behavior, including converting files into symbolic links or other reparse point types.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.1 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Debian Releases

Debian Product

Codename

samba

bookworm	2:4.17.12+dfsg-0+deb12u3 fixed
bookworm (security)	2:4.17.12+dfsg-0+deb12u4 fixed
bullseye	2:4.13.13+dfsg-1~deb11u6 fixed
bullseye (security)	2:4.13.13+dfsg-1~deb11u7 fixed
forky	vulnerable
sid	2:4.24.3+dfsg-1 fixed
trixie	vulnerable
trixie (security)	2:4.22.8+dfsg-0+deb13u2 fixed

Common Weakness Enumeration

CWE-284 - Improper Access Control
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Vulnerability Media Exposure

[GERMAN] Samba: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Samba ausnutzen, um beliebigen Programmcode auszuführen, um einen Denial of Service Angriff durchzuführen, um Dateien zu manipulieren, und um Sicherheitsvorkehrungen zu umgehen.
Published: 2026-05-26T22:00:00+00:00

References

https://access.redhat.com/security/cve/CVE-2026-1933

https://bugzilla.redhat.com/show_bug.cgi?id=2447317

https://bugzilla.samba.org/show_bug.cgi?id=15992