Samba

Samba

211 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-34967

  • EPSS 18.27%
  • Published 20.07.2023 15:15:11
  • Last modified 21.11.2024 08:07:44

A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can be an...

5.3

CVE-2023-34968

  • EPSS 2.2%
  • Published 20.07.2023 15:15:11
  • Last modified 06.12.2024 11:15:05

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attack...

5.9

CVE-2023-3347

  • EPSS 0.42%
  • Published 20.07.2023 15:15:11
  • Last modified 06.12.2024 11:15:06

A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Controllers where SMB2 packet signing is mandatory. This ...

5.9

CVE-2023-0922

  • EPSS 0.22%
  • Published 03.04.2023 23:15:07
  • Last modified 13.02.2025 15:15:12

The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.

4.3

CVE-2023-0225

  • EPSS 0.44%
  • Published 03.04.2023 23:15:06
  • Last modified 18.02.2025 16:15:14

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

6.5

CVE-2023-0614

  • EPSS 0.23%
  • Published 03.04.2023 23:15:06
  • Last modified 13.02.2025 15:15:12

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.

9.8

CVE-2022-45141

  • EPSS 0.35%
  • Published 06.03.2023 23:15:11
  • Last modified 06.03.2025 21:15:12

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite...

5.9

CVE-2021-20251

Exploit
  • EPSS 0.22%
  • Published 06.03.2023 23:15:10
  • Last modified 21.11.2024 05:46:12

A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.

4.3

CVE-2018-14628

Exploit
  • EPSS 0.42%
  • Published 17.01.2023 18:15:10
  • Last modified 22.01.2025 16:10:38

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store.

6.5

CVE-2022-3437

  • EPSS 0.71%
  • Published 12.01.2023 15:15:10
  • Last modified 21.11.2024 07:19:30

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow ...