CVE-2021-45100
HIGHksmbd < 3.4.2 - Cleartext Transmission of Sensitive Information via SMB 3.1.1 Protocol Violation
Title source: llmDescription
The ksmbd server through 3.4.2, as used in the Linux kernel through 5.15.8, sometimes communicates in cleartext even though encryption has been enabled. This occurs because it sets the SMB2_GLOBAL_CAP_ENCRYPTION flag when using the SMB 3.1.1 protocol, which is a violation of the SMB protocol specification. When Windows 10 detects this protocol violation, it disables encryption.
References (4)
Core 4
Core References
Third Party Advisory x_refsource_misc
https://github.com/cifsd-team/ksmbd/issues/550
Patch, Third Party Advisory x_refsource_misc
https://github.com/cifsd-team/ksmbd/pull/551
Third Party Advisory x_refsource_misc
https://marc.info/?l=linux-kernel&m=163961726017023&w=2
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20220107-0001/
Scores
CVSS v3
7.5
EPSS
0.0012
EPSS Percentile
30.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-319
Status
published
Products (9)
ksmbd_project/ksmbd
< 3.4.2
netapp/h300e_firmware
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500e_firmware
netapp/h500s_firmware
netapp/h700e_firmware
netapp/h700s_firmware
Published
Dec 16, 2021
Tracked Since
Feb 18, 2026