Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:40048
HistoryApr 05, 2023 - 9:04 p.m.

Information Disclosure

2023-04-0521:04:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
samba
information disclosure
passwords
ldap
software

EPSS

0.002

Percentile

59.1%

samba is vulnerable to Information Disclosure. The library defaultly sends new or reset passwords over a signed-only connection, when operating against a remote LDAP server.

Affected configurations

Vulners
Node
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1.6
OR
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1.4
OR
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1
OR
-samba\Matchdevel2\4.13.3+dfsg-1ubuntu2
OR
-samba\Matchdevel2\4.13.2+dfsg-3ubuntu1
OR
-samba\Matchdevel2\4.12.5+dfsg-3ubuntu3
OR
-samba\Matchdevel2\4.12.5+dfsg-3ubuntu4.1
OR
-samba\Matchdevel2\4.13.5+dfsg-2ubuntu2
OR
-samba\Matchsid2\4.13.5+dfsg-2
OR
-samba\Matchsid2\4.13.2+dfsg-3
OR
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1.6
OR
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1.4
OR
-samba\Matchfocal2\4.11.6+dfsg-0ubuntu1
OR
-samba\Matchdevel2\4.13.3+dfsg-1ubuntu2
OR
-samba\Matchdevel2\4.13.2+dfsg-3ubuntu1
OR
-samba\Matchdevel2\4.12.5+dfsg-3ubuntu3
OR
-samba\Matchdevel2\4.12.5+dfsg-3ubuntu4.1
OR
-samba\Matchdevel2\4.13.5+dfsg-2ubuntu2
OR
-samba\Matchsid2\4.13.5+dfsg-2
OR
-samba\Matchsid2\4.13.2+dfsg-3
VendorProductVersionCPE
-samba\focalcpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1.6:*:*:*:*:*:*:*
-samba\focalcpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1.4:*:*:*:*:*:*:*
-samba\focalcpe:2.3:a:-:samba\:focal:2\:4.11.6+dfsg-0ubuntu1:*:*:*:*:*:*:*
-samba\develcpe:2.3:a:-:samba\:devel:2\:4.13.3+dfsg-1ubuntu2:*:*:*:*:*:*:*
-samba\develcpe:2.3:a:-:samba\:devel:2\:4.13.2+dfsg-3ubuntu1:*:*:*:*:*:*:*
-samba\develcpe:2.3:a:-:samba\:devel:2\:4.12.5+dfsg-3ubuntu3:*:*:*:*:*:*:*
-samba\develcpe:2.3:a:-:samba\:devel:2\:4.12.5+dfsg-3ubuntu4.1:*:*:*:*:*:*:*
-samba\develcpe:2.3:a:-:samba\:devel:2\:4.13.5+dfsg-2ubuntu2:*:*:*:*:*:*:*
-samba\sidcpe:2.3:a:-:samba\:sid:2\:4.13.5+dfsg-2:*:*:*:*:*:*:*
-samba\sidcpe:2.3:a:-:samba\:sid:2\:4.13.2+dfsg-3:*:*:*:*:*:*:*