CVE-2014-2581

HIGH

Smb4K <1.1.1 - Info Disclosure

Title source: llm

Description

Smb4K before 1.1.1 allows remote attackers to obtain credentials via vectors related to the cuid option in the "Additional options" line edit.

References (6)

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2014-June/133898.html

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2014-June/133901.html

[Release Notes, Third Party Advisory] http://sourceforge.net/projects/smb4k/files/1.1.1/

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2014/03/24/1

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2014/03/25/5

[Issue Tracking, Patch, Third Party Advisory] https://bugs.gentoo.org/505376

Scores

CVSS v3 7.5

EPSS 0.0199

EPSS Percentile 83.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-522

Status published

Affected Products (3)

smb4k_project/smb4k < 1.1.1

fedoraproject/fedora

fedoraproject/fedora

Timeline

Published Jan 28, 2020

Tracked Since Feb 18, 2026