CVE-2016-9772
MEDIUM5.3EPSS 0.26%openafs - security update
Published: 2/6/2017Modified: 4/28/2026
Description
OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
Affected packages (2)
- Debian/openafsfrom 0, < 1.6.20-1
- Debian/openafsfrom 0, < 1.6.1-3+deb7u7
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |