Lucene search
Veracode Vulnerability DatabaseVERACODE:38566HistoryDec 22, 2022 - 10:43 a.m.
Privilege Escalation
2022-12-2210:43:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
28
0.067 Low
EPSS
Percentile
93.9%
samba is vulnerable to Privilege Escalation. The vulnerability exists because the service account with the special constrained delegation permission could forge a more powerful ticket than the one it was presented with.
References
lists.fedoraproject.org/archives/list/[email protected]/message/G2CYDXPFBQES2Z4KLZDILGXFFQ3VIGZ4/
lists.fedoraproject.org/archives/list/[email protected]/message/VCTYD5EQRS73QZTWPOC2ZO2FL7MMYXMS/
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37967
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37967
security-tracker.debian.org/tracker/CVE-2022-37967
security.gentoo.org/glsa/202309-06
security.netapp.com/advisory/ntap-20230110-0003/
Related
debiancve
debiancve
CVE-2022-37967
2022-11-09 22:15:14
prion
prion
Privilege escalation
2022-11-09 22:15:00
mskb
mskb
KB5027388: Compatibility update for installing and recovering Windows Server 2022 and Azure Stack HCI, version 22H2: June 13, 2023
2022-11-08 08:00:00
November 8, 2022—KB5020005 (Security-only update)
2022-11-08 08:00:00
November 8, 2022—KB5020019 (Monthly Rollup)
2022-11-08 08:00:00
alpinelinux
alpinelinux
CVE-2022-37967
2022-11-09 22:15:14
nessus
nessus
Windows Kerberos Elevation of Privilege Vulnerability (CVE-2022-37967) (November 2022)
2023-05-24 00:00:00
SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2023:0014-1)
2023-01-03 00:00:00
Fedora 36 : 2:samba (2022-7f9021ead1)
2022-12-21 00:00:00
redhatcve
redhatcve
CVE-2022-37967
2022-12-16 16:00:42
mscve
mscve
Windows Kerberos Elevation of Privilege Vulnerability
2022-11-08 08:00:00
samba
samba
Kerberos constrained delegation ticket
2022-12-15 00:00:00
nvd
nvd
CVE-2022-37967
2022-11-09 22:15:14
ubuntucve
ubuntucve
CVE-2022-37967
2022-11-09 00:00:00
cve
cve
CVE-2022-37967
2022-11-09 22:15:14
rocky
rocky
krb5 bug fix update
2023-08-31 16:54:20
cvelist
cvelist
CVE-2022-37967 Windows Kerberos Elevation of Privilege Vulnerability
2022-11-09 00:00:00
osv
osv
CVE-2022-37967
2022-11-09 22:15:14
samba vulnerabilities
2023-03-08 13:02:34
samba regression
2023-01-26 21:36:01
fedora
fedora
[SECURITY] Fedora 36 Update: samba-4.16.8-0.fc36
2022-12-21 01:19:35
[SECURITY] Fedora 37 Update: samba-4.17.4-0.fc37
2022-12-19 01:18:39
openvas
openvas
Fedora: Security Advisory for samba (FEDORA-2022-7f9021ead1)
2022-12-21 00:00:00
Samba Multiple Vulnerabilities (Dec 2022)
2022-12-19 00:00:00
Fedora: Security Advisory for samba (FEDORA-2022-cb92b4ea21)
2022-12-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.16.8-alt1
2022-12-15 00:00:00
cisa
cisa
Samba Releases Security Updates
2022-12-16 00:00:00
thn
thn
slackware
slackware
[slackware-security] samba
2022-12-17 21:30:27
ubuntu
ubuntu
Samba vulnerabilities
2023-03-08 00:00:00
Samba vulnerabilities
2023-01-24 00:00:00
Samba regression
2023-01-26 00:00:00
mageia
mageia
Updated samba packages fix security vulnerability
2023-01-24 10:58:24
talosblog
talosblog
avleonov
avleonov
qualysblog
qualysblog
kaspersky
kaspersky
KLA20045 Multiple vulnerabilities in Microsoft Products (ESU)
2022-11-08 00:00:00
KLA20047 Multiple vulnerabilities in Microsoft Windows
2022-11-08 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0603
2023-06-26 00:00:00