VYPR
Unrated severityNVD Advisory· Published Aug 25, 2022· Updated Aug 3, 2024

CVE-2022-32744

CVE-2022-32744

Description

A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.