Vulnerabilities > Samba > Samba > 4.17.1

DATE CVE VULNERABILITY TITLE RISK
2022-12-25 CVE-2022-44640 Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).
network
low complexity
heimdal-project samba
critical
 9.8
9.8
2022-11-09 CVE-2022-37966 Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
network
high complexity
microsoft fedoraproject netapp samba
8.1
8.1
2022-11-09 CVE-2022-37967 Windows Kerberos Elevation of Privilege Vulnerability
network
low complexity
microsoft fedoraproject netapp samba
7.2
7.2
2022-11-09 CVE-2022-38023 Netlogon RPC Elevation of Privilege Vulnerability
network
high complexity
microsoft fedoraproject netapp samba
8.1
8.1
2022-09-01 CVE-2022-1615 Use of Insufficiently Random Values vulnerability in multiple products
In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.
local
low complexity
samba fedoraproject CWE-330
5.5
5.5
2022-09-01 CVE-2022-32743 Incorrect Default Permissions vulnerability in multiple products
Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.
network
low complexity
samba fedoraproject CWE-276
7.5
7.5
2022-08-23 CVE-2021-3670 MaxQueryDuration not honoured in Samba AD DC LDAP
network
low complexity
samba redhat fedoraproject
6.5
6.5