CVE-2022-22995
CRITICAL9.8EPSS 0.16%netatalk - security update
Published: 3/25/2022Modified: 4/28/2026
Description
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
Affected packages (3)
- Debian/netatalkfrom 0, < 3.1.12~ds-8+deb11u2
- Debian/netatalkfrom 0, < 3.1.12~ds-3+deb10u5
- Debian/netatalkfrom 0, < 3.1.12~ds-8+deb11u2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |