8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%
A vulnerability in the ActiveDirectory/DC database audit logging module of the Samba networking software suite is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service
A vulnerability in the Samba network file system is related to how the KDC kpasswd service handles password change requests. Exploitation of the vulnerability could allow an attacker acting remotely to escalate privileges on the system
A vulnerability in the memcpy() function of the Samba networking software package is related to errors in the initialization of the count variable. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality of protected information or cause a denial of service by sending specially crafted messages.
A vulnerability in the SMB1 protocol implementation of the Samba networking software package is related to an operation exceeding the buffer boundaries in memory when checking the range of requests. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service
A vulnerability in the Samba network file system is related to errors in the authentication procedure. Exploitation of the vulnerability could allow a remote attacker to change the password of an arbitrary user and gain full access to the account.
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%