Lucene search

K
ubuntucveUbuntu.comUB:CVE-2023-4154
HistoryOct 10, 2023 - 12:00 a.m.

CVE-2023-4154

2023-10-1000:00:00
ubuntu.com
ubuntu.com
12
samba
active directory
dirsync control
privileged users
rodcs
sensitive secrets
passwords
vulnerability
error conditions

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

26.0%

A design flaw was found in Samba’s DirSync control implementation, which
exposes passwords and secrets in Active Directory to privileged users and
Read-Only Domain Controllers (RODCs). This flaw allows RODCs and users
possessing the GET_CHANGES right to access all attributes, including
sensitive secrets and passwords. Even in a default setup, RODC DC accounts,
which should only replicate some passwords, can gain access to all domain
secrets, including the vital krbtgt, effectively eliminating the RODC / DC
distinction. Furthermore, the vulnerability fails to account for error
conditions (fail open), like out-of-memory situations, potentially granting
access to secret attributes, even under low-privileged attacker influence.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchsamba< anyUNKNOWN
ubuntu20.04noarchsamba< 2:4.15.13+dfsg-0ubuntu0.20.04.6UNKNOWN
ubuntu22.04noarchsamba< 2:4.15.13+dfsg-0ubuntu1.5UNKNOWN
ubuntu23.04noarchsamba< 2:4.17.7+dfsg-1ubuntu2.3UNKNOWN
ubuntu23.10noarchsamba< 2:4.18.6+dfsg-1ubuntu2.1UNKNOWN
ubuntu24.04noarchsamba< 2:4.18.6+dfsg-1ubuntu2.1UNKNOWN
ubuntu14.04noarchsamba< anyUNKNOWN
ubuntu16.04noarchsamba< anyUNKNOWN

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

26.0%