Lucene search

K
cvelistRedhatCVELIST:CVE-2023-0225
HistoryApr 03, 2023 - 12:00 a.m.

CVE-2023-0225

2023-04-0300:00:00
CWE-732
redhat
www.cve.org
6
samba
access check
dnshostname
directory
authenticated users
unprivileged users
attribute deletion

AI Score

5.6

Confidence

High

EPSS

0.003

Percentile

68.8%

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Samba",
    "versions": [
      {
        "version": "samba 4.18.1, samba 4.17.7, samba 4.16.10",
        "status": "affected"
      }
    ]
  }
]