CVE-2023-4091

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 3, 2023
Updated: Apr 22, 2024
CWE ID 276

Summary

CVE-2023-4091 is a vulnerability affecting Samba, a common file-sharing software. The flaw enables SMB clients to truncate files, despite having read-only permissions, when the "acl_xattr" module is configured with "acl_xattr:ignore system acls = yes". The SMB protocol permits opening files with read-only access, but inadvertently sets the file size to zero when the client issues an OVERWRITE request. This vulnerability poses a risk because it bypasses kernel file system permissions checks, relying solely on Samba's permissions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share