Missing handle permissions check in ChangeNotify (CVE-2020-14318)
Missing handle permissions check in SMB1/2/3 ChangeNotify
Summary
This issue is being Investigated by Buffalo Engineering.
Vulnerability ID | Vulnerability Overview |
---|---|
CVE-2020-14318 | A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker. |
Affected Supported TeraStations
Pending
Date | Description |
3/10/2022 | Initial release |