MiracleLinux 8 : samba-4.14.5-7.el8 (AXSA:2022-2911:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2911:01 advisory. samba: Active Directory AD domain user could become root on domain members CVE-2020-25717 samba: SMB1 client connections can be downgraded to...

MiracleLinux 7 : samba-4.10.16-17.el7 (AXSA:2021-2787:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2787:06 advisory. samba: Active Directory AD domain user could become root on domain members CVE-2020-25717 samba: SMB1 client connections can be downgraded to...

EUVD-2003-0871

Malware in sbrugna...

EUVD-2007-5825

Malware in sbrugna...

EUVD-2013-5021

Malware in sbrugna...

EUVD-2025-18193

Malicious code in bioql PyPI...

CVE-2013-5181

The auto-configuration feature in Mail in Apple Mac OS X before 10.9 selects plaintext authentication for unspecified servers that support CRAM-MD5 authentication, which allows remote attackers to obtain sensitive information by sniffing the network...

SUSE CVE-2024-56128

Incorrect Implementation of Authentication Algorithm in Apache Kafka's SCRAM implementation. Issue Summary: Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism SCRAM did not fully adhere to the requirements of RFC 5802 1. Specifically, as per RFC 5802, the serv...

CVE-2024-56128

Incorrect Implementation of Authentication Algorithm in Apache Kafka's SCRAM implementation. Issue Summary: Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism SCRAM did not fully adhere to the requirements of RFC 5802 1. Specifically, as per RFC 5802, the serv...

SUSE CVE-2006-2223

RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that 1 disable RIPv1 or 2 require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information routing state via REQUEST packets such as SEND UPDATE...

Synology Note Station 安全漏洞

Synology Note Station is a cloud-based note management application from China-based Synology Inc. A security vulnerability exists in Synology Note Station Client prior to version 2.2.2-609, which stems from the use of plaintext transmission of sensitive information in the authentication managemen...

Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2016-2124)

Summary A Samba vulnerability affects IBM Spectrum Scale SMB protocol access method that could cause man-in-the-middle attack . A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2016-2124 DESCRIPTION: Samba SMB1 client is vulnerable to a man-in-the-middle attack, caused ...

USN-5174-2: Samba regression | Cloud Foundry

Severity Unknown Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description USN-5174-1 fixed vulnerabilities in Samba. Some of the changes introduced a regression in Kerberos authentication in certain environments. Please see the following upstream bug for more information:...

RHEL 8 : samba (RHSA-2022:0074)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0074 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...

Important: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

samba: SMB1 client connections can be downgraded to plaintext authentication

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required...

Important: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RHEL 8 : samba (RHSA-2022:0008)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0008 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...

CentOS 8 : samba (CESA-2021:5082)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:5082 advisory. - samba: SMB1 client connections can be downgraded to plaintext authentication CVE-2016-2124 - samba: Active Directory AD domain user could become root...

CentOS 7 : samba (RHSA-2021:5192)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:5192 advisory. - A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the...