EulerOS Virtualization 2.13.0 : samba (EulerOS-SA-2025-2617)

🗓️ 31 Dec 2025 00:00:00Reported by TenableType

EulerOS Virtualization Samba flaws CVE-2025-10230 and CVE-2025-9640 compromise confidentiality and integrity.

Reporter	Title	Published	Views	Family All 162
GithubExploit	Exploit for CVE-2025-10230	23 Nov 202500:28	–	githubexploit
GithubExploit	Exploit for CVE-2025-10230	19 Oct 202515:30	–	githubexploit
Tenable Nessus	Amazon Linux 2023 : libnetapi, libnetapi-devel, libsmbclient (ALAS2023-2025-1234)	28 Oct 202500:00	–	nessus
Tenable Nessus	Debian dla-4384 : ctdb - security update	3 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : samba (EulerOS-SA-2025-2471)	11 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : samba (EulerOS-SA-2025-2490)	11 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : samba (EulerOS-SA-2025-2511)	11 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : samba (EulerOS-SA-2025-2532)	11 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.13.1 : samba (EulerOS-SA-2025-2631)	31 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : samba (EulerOS-SA-2026-1325)	16 Mar 202600:00	–	nessus

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(281565);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/12/31");

  script_cve_id("CVE-2025-9640", "CVE-2025-10230");
  script_xref(name:"IAVA", value:"2025-A-0777");

  script_name(english:"EulerOS Virtualization 2.13.0 : samba (EulerOS-SA-2025-2617)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is
affected by the following vulnerabilities :

    A vulnerability has been found in Samba (File Transfer Software) (the affected version is unknown) and
    classified as critical.The CWE definition for the vulnerability is CWE-77. The product constructs all or
    part of a command using externally-influenced input from an upstream component, but it does not neutralize
    or incorrectly neutralizes special elements that could modify the intended command when it is sent to a
    downstream component.As an impact it is known to affect confidentiality, integrity, and availability.There
    is no information about possible countermeasures known. It may be suggested to replace the affected object
    with an alternative product.(CVE-2025-10230)

    A flaw was found in Samba, in the vfs_streams_xattr module, where uninitialized heap memory could be
    written into alternate data streams. This allows an authenticated user to read residual memory content
    that may include sensitive data, resulting in an information disclosure vulnerability.(CVE-2025-9640)

Tenable has extracted the preceding description block directly from the EulerOS Virtualization samba security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2025-2617
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ad311f9b");
  script_set_attribute(attribute:"solution", value:
"Update the affected samba packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-10230");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/10/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/12/31");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/12/31");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libsmbclient");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libwbclient");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-client-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-common-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-winbind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-winbind-clients");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-winbind-modules");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.13.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.13.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.13.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "x86" >!< cpu) audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

var flag = 0;

var pkgs = [
  "libsmbclient-4.17.5-9.h2.eulerosv2r13",
  "libwbclient-4.17.5-9.h2.eulerosv2r13",
  "samba-4.17.5-9.h2.eulerosv2r13",
  "samba-client-4.17.5-9.h2.eulerosv2r13",
  "samba-client-libs-4.17.5-9.h2.eulerosv2r13",
  "samba-common-4.17.5-9.h2.eulerosv2r13",
  "samba-common-tools-4.17.5-9.h2.eulerosv2r13",
  "samba-libs-4.17.5-9.h2.eulerosv2r13",
  "samba-winbind-4.17.5-9.h2.eulerosv2r13",
  "samba-winbind-clients-4.17.5-9.h2.eulerosv2r13",
  "samba-winbind-modules-4.17.5-9.h2.eulerosv2r13"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "samba");
}

31 Dec 2025 00:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.110

EPSS0.00378

SSVC