Vulnerabilities > Samba

DATE CVE VULNERABILITY TITLE RISK
2023-07-20 CVE-2023-3347 Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in multiple products
A vulnerability was found in Samba's SMB2 packet signing mechanism.
network
high complexity
samba redhat fedoraproject CWE-924
5.9
2023-04-03 CVE-2023-0225 Incorrect Permission Assignment for Critical Resource vulnerability in Samba
A flaw was found in Samba.
network
low complexity
samba CWE-732
4.3
2023-04-03 CVE-2023-0922 Cleartext Transmission of Sensitive Information vulnerability in Samba
The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.
network
high complexity
samba CWE-319
5.9
2023-04-03 CVE-2023-0614 Cleartext Storage of Sensitive Information vulnerability in Samba
The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.
network
low complexity
samba CWE-312
6.5
2023-03-06 CVE-2021-20251 Race Condition vulnerability in multiple products
A flaw was found in samba.
network
high complexity
samba fedoraproject CWE-362
5.9
2023-03-06 CVE-2022-45141 Inadequate Encryption Strength vulnerability in Samba
Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).
network
low complexity
samba CWE-326
critical
9.8
2023-01-17 CVE-2018-14628 An information leak vulnerability was discovered in Samba's LDAP server.
network
low complexity
samba fedoraproject
4.3
2023-01-12 CVE-2022-3437 A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal.
network
low complexity
samba fedoraproject
6.5
2023-01-12 CVE-2022-3592 Link Following vulnerability in multiple products
A symlink following vulnerability was found in Samba, where a user can create a symbolic link that will make 'smbd' escape the configured share path.
network
low complexity
samba fedoraproject CWE-59
6.5
2022-12-25 CVE-2022-42898 Integer Overflow or Wraparound vulnerability in multiple products
PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms.
network
low complexity
mit heimdal-project samba CWE-190
8.8