CVE-2025-0620

🗓️ 06 Jun 2025 13:10:07Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 142 Views

Samba smbd fails to recognize group changes during re-authentication of expired SMB sessions.

Reporter	Title	Published	Views	Family All 38
AlpineLinux	CVE-2025-0620	6 Jun 202513:10	–	alpinelinux
ArchLinux	[ASA-202506-3] samba: access restriction bypass	6 Jun 202500:00	–	archlinux
AstraLinux	Astra Linux - уязвимость в samba	1 Nov 202510:54	–	astralinux
Circl	CVE-2025-0620	3 Jun 202514:57	–	circl
CNNVD	Samba 安全漏洞	6 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-0620 Samba: smbd doesn't pick up group membership changes when re-authenticating an expired smb session	6 Jun 202513:10	–	cvelist
Debian CVE	CVE-2025-0620	6 Jun 202513:10	–	debiancve
EUVD	EUVD-2025-17307	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 41 Update: samba-4.21.6-1.fc41	8 Jun 202502:32	–	fedora
Fedora	[SECURITY] Fedora 42 Update: samba-4.22.2-1.fc42	7 Jun 202506:47	–	fedora

NVD

Node

samba sambaRange4.21.0–4.21.6

samba sambaRange4.22.0–4.22.2

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "4.21.0",
        "lessThan": "4.21.6",
        "versionType": "semver"
      }
    ],
    "packageName": "samba",
    "collectionURL": "https://www.samba.org/",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba4",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "samba",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhcos",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
samba	www.samba.org/samba/security/CVE-2025-0620.html
access	www.access.redhat.com/security/cve/CVE-2025-0620
openwall	www.openwall.com/lists/oss-security/2025/06/03/8

08 Jan 2026 04:15Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.14.9

EPSS0.0025

SSVC

CWE-552