Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.7 views

RockyLinux 10 : samba (RLSA-2026:22963)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:22963 advisory. samba: Missing access check on reparse point operations CVE-2026-1933 samba: vfsworm does not block directory modification CVE-2026-2340 samba: group...

9.8CVSS6.1AI score0.12797EPSS
Exploits8References13
Vulnrichment
Vulnrichment
added 2026/03/30 9:43 p.m.6 views

CVE-2026-33995 FreeRDP: Possible double free in kerberos_AcceptSecurityContext

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberosAcceptSecurityContext and kerberosInitializeSecurityContextA WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c can cause a crash in any FreeRDP clients on systems where...

5.3CVSS5.8AI score0.00282EPSS
Exploits0References2
OSV
OSV
added 2024/06/07 11:8 a.m.5 views

OESA-2024-1703 libldb security update

An extensible library that implements an LDAP like API to access remote LDAP servers, or use local tdb databases. Security Fixes: MaxQueryDuration not honoured in Samba AD DC LDAPCVE-2021-3670...

6.5CVSS6.8AI score0.01731EPSS
Exploits0References2
OSV
OSV
added 2023/04/03 11:15 p.m.1 views

DEBIAN-CVE-2023-0614

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

6.5CVSS6.5AI score0.00567EPSS
Exploits0References1
OSV
OSV
added 2023/03/06 11:15 p.m.3 views

DEBIAN-CVE-2022-45141

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption...

9.8CVSS6.8AI score0.00454EPSS
Exploits0References1
OSV
OSV
added 2018/11/28 2:29 p.m.2 views

DEBIAN-CVE-2018-14629

A denial of service vulnerability was discovered in Samba's LDAP server before versions 4.7.12, 4.8.7, and 4.9.3. A CNAME loop could lead to infinite recursion in the server. An unprivileged local attacker could create such an entry, leading to denial of service...

6.5CVSS6.6AI score0.05192EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2016/01/08 1:39 a.m.3 views

libldb: remote memory read in the Samba LDAP server

A memory-read flaw was found in the way the libldb library processed LDB DN records with a null byte. An authenticated, remote attacker could use this flaw to read heap-memory pages from the server...

7.5CVSS7.2AI score0.06114EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2015/04/01 12:0 a.m.3 views

PT-2015-3394 · Samba +5 · Samba +5

Name of the Vulnerable Software and Affected Versions: Samba versions prior to 4.1.22 Description: The issue is related to the LDAP server in the AD domain controller in Samba, where it fails to check return values for successful ASN.1 memory allocation. This allows remote attackers to cause a...

7.5CVSS6.8AI score0.19103EPSS
Exploits1References106
securityvulns
securityvulns
added 2004/10/06 12:0 a.m.24 views

SAMBA shared directory traversal

By using /.///etc path it's possible to access /etc directory...

3.9AI score
Exploits0References3Affected Software1
Rows per page
Query Builder