CVE-2023-3961
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2023-3961 is a newly discovered path traversal vulnerability affecting Samba. The issue arises from inadequate sanitization of client pipe names when connecting to Unix domain sockets within a private directory. Samba normally uses this mechanism to link SMB clients to RPC services like SAMR LSA or SPOOLSS. However, when clients send pipe names containing Unix directory traversal characters (../), Samba may allow root-level access to Unix domain sockets outside the private directory. An attacker or client could potentially manipulate this vulnerability to connect to external services using existing Unix domain sockets, leading to unauthorized access and potential adverse events such as compromise or service crashes.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.