Every CVE whose affected-product data names Samba Cifs-utils, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-27239 — CVSS 7.8 (high): In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local…
CVE-2021-20208 — CVSS 6.1 (medium): A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use…
CVE-2022-29869 — CVSS 5.3 (medium): cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a…
CVE-2020-14342 — CVSS 4.4 (medium): It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary…