VDB

GCVE-VVD-MAGEIA-2021-277

GCVE-VVD-MAGEIA-2021-277
Advisory Published
Vulnetix · Advisory published June 23, 2021
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity (CVE-2021-20208).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiacifs-utils0 (affected), 6.9-6.2.mga7 (unaffected)
Mageiacifs-utils0 (affected), 6.11-2.1.mga8 (unaffected)

Aliases

CVE-2021-20208

Transitive aliases

SUSE-SU-2021:1455-1GHSA-jx7v-8q27-738qEUVD-2021-7651SUSE-SU-2021:1159-1OPENSUSE-SU-2021:0639-1MSRC_CVE-2021-20208SUSE-SU-2021:1161-1GSD-2021-20208OPENSUSE-SU-2024:10683-1

References

Updated cifs-utils packages fix a security vulnerability
advisory
Updated cifs-utils packages fix a security vulnerability
issue
Updated cifs-utils packages fix a security vulnerability
issue
Updated cifs-utils packages fix a security vulnerability
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›