CVE-2013-0214

EPSS 4.9%

Published: 2/2/2013Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-0214

Description

Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.

Affected packages (1)

Debian/sambafrom 0, < 2:3.6.6-5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-0214