ГлавнаяУязвимости → CVE-2026-59260
8.8высокая

CVE-2026-59260

Описание

OpenWrt luci-app-samba4 read ACL grants file.exec permission on /usr/sbin/smbd, allowing authenticated delegated users to execute the Samba daemon with caller-controlled command-line arguments. Attackers can pass arbitrary Samba global options such as message command to a root smbd process, triggering command execution when SMB protocol messages are processed.

CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/openwrt/luci/security/advisories/GHSA-vx64-mmp7-h36chttps://www.vulncheck.com/advisories/openwrt-luci-app-samba4-read-acl-remote-code-execution-via-smbdhttps://github.com/openwrt/luci/security/advisories/GHSA-vx64-mmp7-h36c