CVE-2022-22995
CRITICAL9.8EPSS 0.16%netatalk - security update
發布日:2022/3/25修改日:2026/4/28
描述
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
受影響套件(3)
- Debian/netatalkfrom 0, < 3.1.12~ds-8+deb11u2
- Debian/netatalkfrom 0, < 3.1.12~ds-3+deb10u5
- Debian/netatalkfrom 0, < 3.1.12~ds-8+deb11u2
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |