Vulnerabilities > Samba > Samba > 4.5.0

DATE CVE VULNERABILITY TITLE RISK
2017-05-30 CVE-2017-7494 Code Injection vulnerability in multiple products
Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
network
low complexity
samba debian CWE-94
critical
 10.0
10
2017-05-11 CVE-2016-2126 Permissions, Privileges, and Access Controls vulnerability in Samba
Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum.
network
low complexity
samba CWE-264
4.0
4.0