CVE-2021-3670
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.4 Medium
AI Score
Confidence
High
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.8%
MaxQueryDuration not honoured in Samba AD DC LDAP
| CPE | Name | Operator | Version |
|---|---|---|---|
| samba:samba | samba | eq | * |
| redhat:storage | redhat storage | eq | 3.0 |
| fedoraproject:fedora | fedoraproject fedora | eq | 35 |
References
bugzilla.redhat.com/show_bug.cgi?id=2077533
bugzilla.samba.org/show_bug.cgi?id=14694
gitlab.com/samba-team/samba/-/commit/1d5b155619bc532c46932965b215bd73a920e56f
gitlab.com/samba-team/samba/-/commit/2b3af3b560c9617a233c131376c870fce146c002
gitlab.com/samba-team/samba/-/commit/3507e96b3dcf0c0b8eff7b2c08ffccaf0812a393
gitlab.com/samba-team/samba/-/commit/5f0590362c5c0c5ee20503a67467f9be2d50e73b
gitlab.com/samba-team/samba/-/commit/86fe9d48883f87c928bf31ccbd275db420386803
gitlab.com/samba-team/samba/-/commit/dcfcafdbf756e12d9077ad7920eea25478c29f81
gitlab.com/samba-team/samba/-/commit/e1ab0c43629686d1d2c0b0b2bcdc90057a792049
security.gentoo.org/glsa/202309-06
Social References
More
Related
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.4 Medium
AI Score
Confidence
High
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.8%