What the vulnerability does

01Description

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

Key dates

02Disclosure timeline

March 12, 2018 CVE published
September 17, 2024 Record updated