5.5

CVE-2026-23303

smb: client: Don't log plaintext credentials in cifs_set_cifscreds

In the Linux kernel, the following vulnerability has been resolved:

smb: client: Don't log plaintext credentials in cifs_set_cifscreds

When debug logging is enabled, cifs_set_cifscreds() logs the key
payload and exposes the plaintext username and password. Remove the
debug log to avoid exposing credentials.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.3.1 < 5.10.253
LinuxLinux Kernel Version >= 5.11 < 5.15.203
LinuxLinux Kernel Version >= 5.16 < 6.1.167
LinuxLinux Kernel Version >= 6.2 < 6.6.130
LinuxLinux Kernel Version >= 6.7 < 6.12.77
LinuxLinux Kernel Version >= 6.13 < 6.18.17
LinuxLinux Kernel Version >= 6.19 < 6.19.7
LinuxLinux Kernel Version3.3 Update-
LinuxLinux Kernel Version3.3 Updaterc2
LinuxLinux Kernel Version3.3 Updaterc3
LinuxLinux Kernel Version3.3 Updaterc4
LinuxLinux Kernel Version3.3 Updaterc5
LinuxLinux Kernel Version3.3 Updaterc6
LinuxLinux Kernel Version3.3 Updaterc7
LinuxLinux Kernel Version7.0 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.024
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/ff0ece8ed04180c52167c003362284b23cf54e8d
Patch
https://git.kernel.org/stable/c/3990f352bb0adc8688d0949a9c13e3110570eb61
Patch
https://git.kernel.org/stable/c/b746a357abfb8fdb0a171d51ec5091e786d34be1
Patch
https://git.kernel.org/stable/c/2ef0fc3bf49db2b9df36d5f44508c9e384bfa2a1
Patch
https://git.kernel.org/stable/c/3e182701db612ddd794ccd5ed822e6cc1db2b972
Patch
https://git.kernel.org/stable/c/2f37dc436d4e61ff7ae0b0353cf91b8c10396e4d
Patch
https://git.kernel.org/stable/c/54c570de9a35860dfa85fe668f23ddfda8cc7e26
Patch
https://git.kernel.org/stable/c/e5a3b11e07b335006371915b2da47b6056c9e3bc
Patch