Vulnerabilities > Samba

DATE CVE VULNERABILITY TITLE RISK
2022-12-25 CVE-2022-44640 Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).
network
low complexity
heimdal-project samba
critical
 9.8
9.8
2022-12-18 CVE-2022-4603 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samba PPP
A vulnerability classified as problematic has been found in ppp.
network
low complexity
samba CWE-119
6.5
6.5
2022-09-01 CVE-2022-1615 Use of Insufficiently Random Values vulnerability in multiple products
In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.
local
low complexity
samba fedoraproject CWE-330
5.5
5.5
2022-09-01 CVE-2022-32743 Incorrect Default Permissions vulnerability in multiple products
Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.
network
low complexity
samba fedoraproject CWE-276
7.5
7.5
2022-08-29 CVE-2022-0336 Incorrect Default Permissions vulnerability in multiple products
The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database.
network
low complexity
samba fedoraproject CWE-276
8.8
8.8
2022-08-25 CVE-2022-2031 Improper Authentication vulnerability in Samba
A flaw was found in Samba.
network
low complexity
samba CWE-287
8.8
8.8
2022-08-25 CVE-2022-32742 Unspecified vulnerability in Samba
A flaw was found in Samba.
network
low complexity
samba
4.3
4.3
2022-08-25 CVE-2022-32744 Authentication Bypass by Spoofing vulnerability in Samba
A flaw was found in Samba.
network
low complexity
samba CWE-290
8.8
8.8
2022-08-25 CVE-2022-32745 Use of Uninitialized Resource vulnerability in Samba
A flaw was found in Samba.
network
low complexity
samba CWE-908
8.1
8.1
2022-08-25 CVE-2022-32746 Use After Free vulnerability in Samba
A flaw was found in the Samba AD LDAP server.
network
low complexity
samba CWE-416
5.4
5.4