Unrated severityNVD Advisory· Published Mar 15, 2019· Updated Sep 17, 2024
Password exposed in process listing
CVE-2018-17956
Description
In yast2-samba-provision up to and including version 1.0.1 the password for samba shares was provided on the command line to tools used by yast2-samba-provision, allowing local attackers to read them in the process list
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5<=1.0.1+ 1 more
- (no CPE)range: <=1.0.1
- (no CPE)range: unspecified
- osv-coords3 versionspkg:rpm/opensuse/yast2-samba-provision&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/yast2-samba-provision&distro=openSUSE%20Tumbleweedpkg:rpm/suse/yast2-samba-provision&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP4
< 1.0.5-150400.9.3.3+ 2 more
- (no CPE)range: < 1.0.5-150400.9.3.3
- (no CPE)range: < 1.0.5-1.2
- (no CPE)range: < 1.0.5-150400.9.3.3
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.