CVE-2021-45100

Published: Dec 16, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

The ksmbd server through 3.4.2, as used in the Linux kernel through 5.15.8, sometimes communicates in cleartext even though encryption has been enabled. This occurs because it sets the SMB2_GLOBAL_CAP_ENCRYPTION flag when using the SMB 3.1.1 protocol, which is a violation of the SMB protocol specification. When Windows 10 detects this protocol violation, it disables encryption.

Affected (9)

Products: Ksmbd Project: Ksmbd · Netapp: H410c Firmware, H300s Firmware, H500s Firmware, H700s Firmware, H300e Firmware, H500e Firmware, H700e Firmware, H410s Firmware

1 product

8 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ksmbd Project Ksmbd	Up to 3.4.2

Running on/with	Platform Versions
Linux Linux Kernel	Up to 5.15.8

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H410c Firmware	All versions

Running on/with	Platform Versions
Netapp H410c	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H300s Firmware	All versions

Running on/with	Platform Versions
Netapp H300s	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H500s Firmware	All versions

Running on/with	Platform Versions
Netapp H500s	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H700s Firmware	All versions

Running on/with	Platform Versions
Netapp H700s	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H300e Firmware	All versions

Running on/with	Platform Versions
Netapp H300e	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H500e Firmware	All versions

Running on/with	Platform Versions
Netapp H500e	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H700e Firmware	All versions

Running on/with	Platform Versions
Netapp H700e	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H410s Firmware	All versions

Running on/with	Platform Versions
Netapp H410s	All versions

Related CWEs

CWE-319

Cleartext Transmission of Sensitive Information

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

References (8)

https://github.com/cifsd-team/ksmbd/issues/550

Source: cve@mitre.org

Third Party Advisory

https://github.com/cifsd-team/ksmbd/pull/551

Source: cve@mitre.org

PatchThird Party Advisory

https://marc.info/?l=linux-kernel&m=163961726017023&w=2

Source: cve@mitre.org

Third Party Advisory

https://security.netapp.com/advisory/ntap-20220107-0001/

Source: cve@mitre.org

Third Party Advisory

https://github.com/cifsd-team/ksmbd/issues/550

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/cifsd-team/ksmbd/pull/551

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://marc.info/?l=linux-kernel&m=163961726017023&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20220107-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.