vulnerability

Debian: CVE-2014-2079: xfe -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:P/I:N/A:N)	Jul 16, 2018	Jul 30, 2024	Mar 30, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

Jul 16, 2018

Added

Jul 30, 2024

Modified

Mar 30, 2026

Description

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

Solution

debian-upgrade-xfe

References

CVE-2014-2079
https://attackerkb.com/topics/CVE-2014-2079
EUVD-EUVD-2014-2119
https://euvd.enisa.europa.eu/vulnerability/EUVD-2014-2119

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report