CISACISA:7FB0A467C0EB89B6198A58418B43D50C

HistorySep 21, 2020 - 12:00 a.m.

Samba Releases Security Update for CVE-2020-1472

2020-09-2100:00:00

us-cert.cisa.gov

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

The Samba Team has released a security update to address a critical vulnerability—CVE-2020-1472—in multiple versions of Samba. This vulnerability could allow a remote attacker to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Samba Security Announcement for CVE-2020-1472 and apply the necessary updates or workaround.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.

References

www.samba.org/samba/security/CVE-2020-1472.html

attackerkb 2

githubexploit 44

nessus 34

cisa 6

thn 8

carbonblack 3

threatpost 19

metasploit 1

freebsd 1

msrc 7

debiancve 1

archlinux 1

huawei 1

checkpoint_advisories 2

ibm 1

suse 2

fedora 3

redhatcve 1

zdt 1

packetstorm 1

mscve 1

ubuntu 3

prion 1

krebs 1

talosblog 4

rapid7blog 4

osv 6

ics 4

mageia 1

cbl_mariner 1

securelist 1

qualysblog 2

malwarebytes 1

samba 1

cert 1

cve 1

ubuntucve 1

altlinux 1

fireeye 1

trendmicroblog 1

veracode 1

hivepro 3

alpinelinux 1

cisa_kev 1

kitploit 1

exploitdb 1

pentestpartners 1

mssecure 1

redhat 2

amazon 3

oraclelinux 2

centos 1

rocky 1

f5 1

almalinux 1

mmpc 1

gentoo 1

attackerkb

CVE-2020-1472

2020-08-17 00:00:00

CVE-2020-1472 aka Zerologon

2020-08-17 00:00:00

githubexploit

Exploit for Use of Insufficiently Random Values in Microsoft

2020-10-21 09:42:34

Exploit for Use of Insufficiently Random Values in Microsoft

2020-09-15 13:50:01

Exploit for Use of Insufficiently Random Values in Microsoft

2020-09-14 16:56:51

nessus

SUSE SLES15 Security Update : samba (SUSE-SU-2020:2719-1)

2020-12-09 00:00:00

Fedora 32 : 2:samba (2020-0be2776ed3)

2020-09-24 00:00:00

FreeBSD : samba -- Unauthenticated domain takeover via netlogon (24ace516-fad7-11ea-8d8c-005056a311d1)

2020-09-21 00:00:00

cisa

CERT/CC Releases Information on Critical Vulnerability in Microsoft Windows Netlogon Remote Protocol

2020-09-17 00:00:00

Microsoft Warns of Continued Exploitation of CVE-2020-1472

2020-10-29 00:00:00

Exploit for Netlogon Remote Protocol Vulnerability, CVE-2020-1472

2020-09-14 00:00:00

thn

Detecting and Preventing Critical ZeroLogon Windows Server Vulnerability

2020-09-23 18:08:00

CISA and FBI Issue Warning About Rhysida Ransomware Double Extortion Attacks

2023-11-16 12:03:00

US Cyber Command Links 'MuddyWater' Hacking Group to Iranian Intelligence

2022-01-13 07:47:00

carbonblack

TAU Threat Advisory: Imminent Ransomware threat to U.S. Healthcare and Public Health Sector

2020-10-30 20:13:43

Risk Score 101: What to look for in a Risk Score

2020-11-19 18:20:13

Querying Windows Event Logs for Faster Investigation and Response

2020-11-12 16:00:34

threatpost

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

2020-11-19 14:34:36

New Adwind Variant Targets Windows, Chromium Credentials

2019-10-29 16:17:02

DHS Issues Dire Patch Warning for ‘Zerologon’

2020-09-21 19:29:21

metasploit

Netlogon Weak Cryptographic Authentication

2020-09-17 18:28:53

freebsd

samba -- Unauthenticated domain takeover via netlogon

2020-01-01 00:00:00

msrc

Attacks exploiting Netlogon vulnerability (CVE-2020-1472)

2020-10-29 07:00:00

Attacks exploiting Netlogon vulnerability (CVE-2020-1472)

2020-10-29 20:02:19

Attacks exploiting Netlogon vulnerability (CVE-2020-1472)

2020-10-29 07:00:00

debiancve

CVE-2020-1472

2020-08-17 19:15:00

archlinux

[ASA-202009-17] samba: access restriction bypass

2020-09-29 00:00:00

huawei

Security Advisory - Netlogon Elevation of Privilege Vulnerability

2020-11-05 00:00:00

checkpoint_advisories

Winlogon Privilege Escalation (CVE-2020-1472)

2020-11-04 00:00:00

Microsoft Netlogon Elevation of Privilege (CVE-2020-1472)

2020-09-21 00:00:00

ibm

Security Bulletin: Publicly disclosed vulnerability from Samba affects IBM Netezza Host Management

2020-12-24 11:01:33

suse

Security update for samba (important)

2020-09-24 00:00:00

Security update for samba (important)

2020-09-25 00:00:00

fedora

[SECURITY] Fedora 31 Update: samba-4.11.13-0.fc31

2020-10-04 01:26:52

[SECURITY] Fedora 33 Update: samba-4.13.0-11.fc33

2020-09-25 17:25:08

[SECURITY] Fedora 32 Update: samba-4.12.7-0.fc32

2020-09-23 17:13:53

redhatcve

CVE-2020-1472

2020-09-17 06:30:08

zdt

ZeroLogon - Netlogon Elevation of Privilege Exploit

2020-11-18 00:00:00

packetstorm

Zerologon Netlogon Privilege Escalation

2020-11-18 00:00:00

mscve

Netlogon Elevation of Privilege Vulnerability

2020-08-11 07:00:00

ubuntu

Samba vulnerability

2020-09-17 00:00:00

Samba update

2020-09-30 00:00:00

Samba vulnerability

2020-09-17 00:00:00

prion

Privilege escalation

2020-08-17 19:15:00

krebs

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

2020-09-24 17:00:51

talosblog

Microsoft Netlogon exploitation continues to rise

2020-09-29 09:04:58

IR Q4 2023 trends: Significant increase in ransomware activity found in engagements, while education remains one of the most-targeted sectors

2024-01-24 13:00:04

Quarterly Report: Incident Response Trends in Q3 2022

2022-10-25 12:00:00

rapid7blog

CVE-2020-1472 "Zerologon" Critical Privilege Escalation: What You Need To Know

2020-09-14 23:29:59

Are You Still Running End-of-Life Windows Servers?

2020-10-19 13:06:38

Metasploit Wrap-Up

2020-10-09 19:41:47

osv

samba update

2020-09-30 13:44:33

CVE-2020-1472

2020-08-17 19:15:15

samba vulnerability

2020-09-17 11:03:22

ics

#StopRansomware: BianLian Ransomware Group

2023-05-16 12:00:00

#StopRansomware: Rhysida Ransomware

2023-11-15 12:00:00

#StopRansomware: Cuba Ransomware

2023-01-05 12:00:00

mageia

Updated samba packages fix security vulnerability

2020-09-30 13:01:40

cbl_mariner

CVE-2020-1472 affecting package samba for versions less than 4.12.5-4

2024-04-18 21:06:34

securelist

The future of cyberconflicts

2020-12-18 10:00:10

qualysblog

Microsoft Netlogon Vulnerability (CVE-2020-1472 – Zerologon) – Automatically Discover, Prioritize and Remediate Using Qualys VMDR®

2020-09-15 19:55:08

Conti Ransomware

2021-11-18 17:17:56

malwarebytes

The story of ZeroLogon

2021-01-19 18:37:09

samba

Unauthenticated domain takeover via netlogon ("ZeroLogon")

2020-09-18 00:00:00

cert

Microsoft Windows Netlogon Remote Protocol (MS-NRPC) uses insecure AES-CFB8 initialization vector

2020-09-16 00:00:00

cve

CVE-2020-1472

2020-08-17 19:15:00

ubuntucve

CVE-2020-1472

2020-09-16 00:00:00

altlinux

Security fix for the ALT Linux 10 package samba version 4.11.13-alt1

2020-09-19 00:00:00

fireeye

Unhappy Hour Special: KEGTAP and SINGLEMALT With a Ransomware Chaser

2020-10-28 00:00:00

trendmicroblog

This Week in Security News: AWS Outposts Ready Launches With 32 Validated Partners and Staples Hit by a Data Breach

2020-09-18 12:03:07

veracode

Privilege Escalation

2020-10-08 13:45:57

hivepro

Attacks, Vulnerabilities and Actors 19 June to 25 June 2023

2023-06-27 11:07:09

Are you a victim of the Conti Ransomware?

2021-09-23 13:47:51

Vulnerabilities & Threats that Matter 08 – 14th Aug

2022-08-16 05:00:49

alpinelinux

CVE-2020-1472

2020-08-17 19:15:00

cisa_kev

Microsoft Netlogon Privilege Escalation Vulnerability

2021-11-03 00:00:00

kitploit

OffensivePipeline - Allows You To Download And Build C# Tools, Applying Certain Modifications In Order To Improve Their Evasion For Red Team Exercises

2023-02-17 11:30:00

exploitdb

ZeroLogon - Netlogon Elevation of Privilege

2020-11-18 00:00:00

pentestpartners

CVE-2020-1472/Zerologon. As an IT manager should I worry?

2020-09-23 05:05:06

mssecure

Zerologon is now detected by Microsoft Defender for Identity

2020-11-30 17:00:20

redhat

(RHSA-2020:5439) Moderate: samba security and bug fix update

2020-12-15 09:01:31

(RHSA-2021:1647) Moderate: samba security, bug fix, and enhancement update

2021-05-18 05:44:25

amazon

Critical: samba

2021-01-12 22:51:00

Critical: samba

2021-01-05 23:34:00

Critical: samba

2021-06-16 20:36:00

oraclelinux

samba security, bug fix, and enhancement update

2021-05-25 00:00:00

samba security and bug fix update

2020-12-16 00:00:00

centos

ctdb, libsmbclient, libwbclient, samba security update

2020-12-18 00:19:11

rocky

samba security, bug fix, and enhancement update

2021-05-18 05:44:25

K93951507 : Multiple Samba vulnerabilities

2021-04-06 00:00:00

almalinux

Moderate: samba security, bug fix, and enhancement update

2021-05-18 05:44:25

mmpc

Zerologon is now detected by Microsoft Defender for Identity

2020-11-30 17:00:20

gentoo

Samba: Multiple vulnerabilities

2020-12-24 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

Related for CISA:7FB0A467C0EB89B6198A58418B43D50C