Remote Code Execution Vulnerability in Netatalk Affects Data Integrity
CVE-2022-0194

9.8CRITICAL

Key Information:

Vendor

Netatalk

Status
Netatalk
Vendor
CVE Published:
28 March 2023

What is CVE-2022-0194?

A vulnerability in Netatalk allows remote attackers to execute arbitrary code without authentication. The flaw resides in the ad_addcomment function, where insufficient validation of user-supplied data length leads to a buffer overflow. This can enable attackers to run code with root privileges on affected systems, posing significant risks to data integrity and system stability.

Affected Version(s)

Netatalk 3.1.12

References

https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.13.html
https://www.zerodayinitiative.com/advisories/ZDI-22-530/
https://lists.debian.org/debian-lts-announce/2023/05/msg0...
mailing-list

EPSS Score

9% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

CVSS V3.0

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Theori (@theori_io)
.