CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

284 matches found

Critical: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6.1AI score0.00392EPSS

Exploits2References7

SUSE Linux•added 6 days ago•12 views

Security update for samba

This update for samba fixes the following issues CVE-2026-2340: vfsworm does not block directory modification bsc1261158. CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server bsc1261160. CVE-2026-4408: Remote Code Execution in SAMR bsc1261163. CVE-2026-4480: Unauthenticated Remote...

10CVSS5.9AI score0.00392EPSS

Exploits1References18

OSV•added 6 days ago•2 views

SUSE-SU-2026:2108-1 Security update for samba

This update for samba fixes the following issues - CVE-2026-2340: vfsworm does not block directory modification bsc1261158. - CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server bsc1261160. - CVE-2026-4408: Remote Code Execution in SAMR bsc1261163. - CVE-2026-4480: Unauthenticated...

9.8CVSS5.9AI score0.00392EPSS

Exploits1References10

OSV•added 2026/05/26 12:36 p.m.•3 views

SUSE-SU-2026:2076-1 Security update for samba

This update for samba fixes the following issues Security issues: - CVE-2026-1933: Missing access check on reparse point operations bsc1261188. - CVE-2026-2340: vfsworm does not block directory modification bsc1261158. - CVE-2026-3012: group policy certificate enrollment uses http: // without...

9.8CVSS5.9AI score0.00392EPSS

Exploits1References16

OSV•added 2026/05/26 12:35 p.m.•1 views

SUSE-SU-2026:2074-1 Security update for samba

This update for samba fixes the following issues - CVE-2026-2340: vfsworm does not block directory modification bsc1261158. - CVE-2026-3012: group policy certificate enrollment uses http: // without validation bsc1261159. - CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server...

9.8CVSS5.8AI score0.00392EPSS

Exploits1References11

Samba•added 2026/05/26 12:0 a.m.•5 views

Denial of service against AD DC WINS server

Description The Windows Internet Naming Service 1 is an unauthenticated service for registering and looking up names in a NetBIOS network running on TCP and UDP 2. The protocol handlers for the RELEASE and MULTIHOMEREG packets in the WINS server running when Samba is configured as an Active...

5.8AI score

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в cifs-utils

It was discovered that cifs-utils’ mount.cifs function invoked a shell when requesting the Samba password, which could be exploited to inject arbitrary commands. An attacker who had special permissions, such as those through sudo rules, could use this vulnerability to escalate their privileges...

7CVSS7.2AI score0.00134EPSS

Exploits1References2

EUVD•added 2026/05/01 1:56 p.m.•2 views

EUVD-2026-26513

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has many POSIX ACL entries, the accumulated size can wrap past 65535, causin...

5.8AI score0.00015EPSS

Exploits0References5

OSV•added 2025/10/31 2:11 p.m.•4 views

OESA-2025-2539 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A vulnerability has been found in Samba File Transfer Software the affected version is unknown and classified as critical.The CWE definition for the vulnerability is CWE-77. The product constructs all or...

10CVSS6AI score0.00486EPSS

Exploits2References3

OSV•added 2025/10/24 2:33 p.m.•2 views

OESA-2025-2511 samba security update

10CVSS5.9AI score0.00486EPSS

Exploits2References3

Fedora•added 2025/10/23 1:57 a.m.•5 views

[SECURITY] Fedora 41 Update: samba-4.21.9-1.fc41

Samba is the standard Windows interoperability suite of programs for Linux and Unix...

10CVSS7AI score0.00486EPSS

Exploits2

Slackware Linux•added 2025/10/15 10:55 p.m.•5 views

[slackware-security] samba

New samba packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/samba-4.22.5-i586-1slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Uninitialized memory disclosure...

10CVSS7.2AI score0.00486EPSS

Exploits2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-11710

Malware in sbrugna...

8.8CVSS7.5AI score0.07722EPSS

Exploits1References15

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-6534

Malware in sbrugna...

4.3CVSS5.8AI score0.00535EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2006-1063

Malware in sbrugna...

1.2CVSS9AI score0.00456EPSS

Exploits0References14

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-18394

Malware in sbrugna...

6.8CVSS6.5AI score0.03382EPSS

Exploits1References11

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-54034

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00397EPSS

Exploits0References5

Tenable Nessus•added 2025/06/06 12:0 a.m.•8 views

Samba 4.21.x < 4.21.6 / 4.22.x < 4.22.2 Security Bypass Vulnerability

The version of Samba installed on the remote host is 4.21.x prior to 4.21.6, or 4.22.x prior to 4.22.2. It is, therefore, affected by a security bypass vulnerability. A flaw exists with smbd when using Kerberos authentication with smb, due to using the cached user group permissions when...

4.9CVSS6.5AI score0.0025EPSS

Exploits0References6