A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC request to view the information that is part of the disclosed path.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samba samba |
||
fedoraproject fedora 37 |
||
fedoraproject fedora 38 |
||
redhat enterprise linux 8.0 |
||
redhat storage 3.0 |
||
redhat enterprise linux 9.0 |
||
debian debian linux 11.0 |
||
debian debian linux 12.0 |