VYPR

Samba AD DC

by Samba (software)

Source repositories

CVEs (4)

  • CVE-2022-0336Aug 29, 2022
    risk 0.00cvss epss 0.01

    The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on…

  • CVE-2021-3670Aug 23, 2022
    risk 0.00cvss epss 0.02

    MaxQueryDuration not honoured in Samba AD DC LDAP

  • CVE-2020-25721Mar 16, 2022
    risk 0.00cvss epss 0.02

    Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

  • CVE-2020-25722Feb 18, 2022
    risk 0.00cvss epss 0.02

    Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.