Lucene search
K

25 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in Samba

The fixes in 4.6.16, 4.7.9, 4.8.4, and 4.9.7 for CVE-2018-10919, which address the issue of confidential attributes being disclosed via LDAP filters, were insufficient. An attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

7.7CVSS6.5AI score0.00567EPSS
Exploits0References2
NCSC
NCSC
added 2026/05/20 6:21 a.m.40 views

Vulnerabilities found in Microsoft Windows

Microsoft has published measures to address a vulnerability in Windows operating systems that could allow malicious individuals to access data encrypted via BitLocker. The vulnerability involves bypassing a security feature in Windows, known as “YellowKey”. A proof of concept is available that...

6.8CVSS6AI score0.01249EPSS
Exploits2References1
Microsoft KB
Microsoft KB
added 2026/04/14 2:0 p.m.21 views

April 14, 2026—KB5083768 (OS Build 28000.1836)

April 14, 2026—KB5083768 OS Build 28000.1836 ​​​​​This security update for Windows 11, version 26H1 KB5083768, includes the latest security improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional...

9.8CVSS7AI score0.64095EPSS
Exploits11
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-12649

Malicious code in bioql PyPI...

7.7CVSS6.1AI score0.00567EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.77 views

August 13, 2024—KB5041782 (OS Build 10240.20751) - EXPIRED

August 13, 2024—KB5041782 OS Build 10240.20751 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

9.8CVSS7AI score0.70564EPSS
Exploits28
Malwarebytes
Malwarebytes
added 2024/07/25 4:5 p.m.12 views

Windows update may present users with a BitLocker recovery screen

Some Windows users may see a BitLocker Recovery screen after applying the Microsoft patch Tuesday updates. BitLocker is a Windows security feature that encrypts entire drives. It prevents someone that has obtained a stolen or lost device from reading the files stored on that drive. Unfortunately,...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.4 views

PT-2024-4733 · Microsoft · Windows Bitlocker +1

Name of the Vulnerable Software and Affected Versions: Windows BitLocker affected versions not specified Description: The issue is related to a security feature bypass vulnerability in the BitLocker data protection function of Windows operating systems. This vulnerability can be exploited by an...

7.2CVSS6.6AI score0.00937EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS Virtualization 2.11.1 : libldb (EulerOS-SA-2023-2727)

According to the versions of the libldb package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient an...

7.7CVSS6.5AI score0.02195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.30 views

EulerOS Virtualization 2.11.0 : libldb (EulerOS-SA-2023-2758)

According to the versions of the libldb package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient an...

7.7CVSS6.5AI score0.02195EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2023-2650)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7AI score0.00567EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/16 12:0 a.m.28 views

Fedora 36 : libldb / samba (2023-1c172e3264)

The remote Fedora 36 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-1c172e3264 advisory. Update to ldb 2.5.3 and samba 4.16.10 Security fixes for CVE-2023-0922, CVE-2023-0614 Tenable has extracted the preceding description block directly...

7.7CVSS6.8AI score0.00567EPSS
Exploits0References3
Prion
Prion
added 2023/04/03 11:15 p.m.31 views

Design/Logic Flaw

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

4CVSS6.2AI score0.02195EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/03 12:0 a.m.4 views

CVE-2023-0614

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

6.6AI score0.00567EPSS
Exploits0References4
NCSC
NCSC
added 2023/03/30 12:0 a.m.3 views

Vulnerabilities fixed in Samba

Samba developers have fixed vulnerabilities in Samba. A malicious party could exploit the vulnerabilities to gain access gain access to sensitive data, or to manipulate data in the underlying Active Directory without being authorized to do so. The vulnerability with attribute CVE-2023-0614 is a f...

7.7CVSS7.2AI score0.02195EPSS
Exploits0
FreeBSD
FreeBSD
added 2023/03/29 12:0 a.m.51 views

samba -- multiple vulnerabilities

The Samba Team reports: An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory. The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset...

7.7CVSS6.1AI score0.00719EPSS
Exploits0References3
OSV
OSV
added 2023/03/29 12:0 a.m.0 views

UBUNTU-CVE-2023-0614

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

7.7CVSS6.7AI score0.00567EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2022/10/11 7:0 a.m.89 views

August 9, 2022—KB5016684 (Security-only update)

August 9, 2022—KB5016684 Security-only update IMPORTANT Microsoft released update KB5012170 on August 9, 2022. It provides support for Secure Boot Forbidden Signature Database DBX. This is a standalone, security update. Windows 8.1 and newer clients and Windows Server 2012 and newer servers must...

9.8CVSS7.3AI score0.6798EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2022/10/11 7:0 a.m.89 views

August 9, 2022—KB5016639 (OS Build 10240.19387) - EXPIRED

August 9, 2022—KB5016639 OS Build 10240.19387 - EXPIRED EXPIRATION NOTICEIMPORTAN T As of 9/12/2023, this KB is no longer available from Windows Update, the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security quality update. NEW...

9.8CVSS8AI score0.6798EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2022/10/11 7:0 a.m.216 views

August 9, 2022—KB5016623 (OS Build 17763.3287)

August 9, 2022—KB5016623 OS Build 17763.3287 NEW 8/26/22IMPORTANT Microsoft released KB5012170 on August 9, 2022. It provides support for Secure Boot Forbidden Signature Database DBX. This is a standalone, security update. Windows 8.1 and newer clients and Windows Server 2012 and newer servers mu...

8.1CVSS7.4AI score0.47226EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2022/10/11 7:0 a.m.113 views

August 9, 2022—KB5016683 (Security-only update)

August 9, 2022—KB5016683 Security-only update IMPORTANT Microsoft released update KB5012170 on August 9, 2022. It provides support for Secure Boot Forbidden Signature Database DBX. This is a standalone, security update. Windows 8.1 and newer clients and Windows Server 2012 and newer servers must...

9.8CVSS7.3AI score0.6798EPSS
Exploits1
Rows per page
Query Builder