Samba AD DC
Source repositories
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-0336 | 0.00 | — | 0.01 | Aug 29, 2022 | The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on… | |||
| CVE-2021-3670 | 0.00 | — | 0.02 | Aug 23, 2022 | MaxQueryDuration not honoured in Samba AD DC LDAP | |||
| CVE-2020-25721 | 0.00 | — | 0.02 | Mar 16, 2022 | Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets. | |||
| CVE-2020-25722 | 0.00 | — | 0.02 | Feb 18, 2022 | Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise. |
- CVE-2022-0336Aug 29, 2022risk 0.00cvss —epss 0.01
The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on…
- CVE-2021-3670Aug 23, 2022risk 0.00cvss —epss 0.02
MaxQueryDuration not honoured in Samba AD DC LDAP
- CVE-2020-25721Mar 16, 2022risk 0.00cvss —epss 0.02
Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.
- CVE-2020-25722Feb 18, 2022risk 0.00cvss —epss 0.02
Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.