CVE-2014-2079

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2014-2079

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-2079.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2014-2079

Published

2018-07-16T14:29:00Z

Modified

2024-11-21T02:05:36Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

References

Affected packages

Debian:11 / xfe

Package

Name: xfe
Purl: pkg:deb/debian/xfe?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.37-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / xfe

Package

Name: xfe
Purl: pkg:deb/debian/xfe?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.37-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / xfe

Package

Name: xfe
Purl: pkg:deb/debian/xfe?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.37-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}