CVSS Score v3.1
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.3569
97.2th percentile
Risk Priority
39
60% EPSS · 20% KEV · 20% CVSS
Summary
CVE-2021-44142 is a high-severity Out-of-bounds Read (CWE-125) vulnerability in Canonical Ubuntu Linux . Its CVSS base score is 8.8 (High).
Operationally, ranked in the top 2.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Vulnerability
Related Threats
Affected Assets
Mitigating Controls
Vulnerability details
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap…
more read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.
CWE(s)
Related Threats
Threat-Actor AttributionAI
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs | CISA
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs | CISA
Storm-0530
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs | CISA
Maui ransomware
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs | CISA
Affected Assets
samba
samba
≤ 4.13.17 · 4.14.0 — 4.14.12 · 4.15.0 — 4.15.5
debian
debian linux
10.0, 11.0
canonical
ubuntu linux
14.04, 16.04, 18.04, 20.04, 21.10
synology
diskstation manager
6.2 — 6.2.4-25556.4
fedoraproject
fedora
34, 35
redhat
codeready linux builder
all versions
redhat
gluster storage
3.5
redhat
virtualization host
4.0
redhat
enterprise linux
7.0, 8.0
redhat
enterprise linux desktop
7.0
+13 more product configuration(s) — see NVD for full list
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.
References
secalert@redhat.com
secalert@redhat.com
secalert@redhat.com
secalert@redhat.com
secalert@redhat.com
af854a3a-2127-422b-91ae-364da2661108
af854a3a-2127-422b-91ae-364da2661108
af854a3a-2127-422b-91ae-364da2661108
af854a3a-2127-422b-91ae-364da2661108
af854a3a-2127-422b-91ae-364da2661108
af854a3a-2127-422b-91ae-364da2661108