Severity
Medium
Analysis Summary
CVE-2023-0614 CVSS:7.7
Samba could allow a remote authenticated attacker to obtain sensitive information, caused by an insufficient fix for CVE-2018-10919 for confidential attribute disclosure using LDAP filters. An attacker could exploit this vulnerability to obtain confidential BitLocker recovery keys from a Samba AD DC.
CVE-2023-0225 CVSS:5.4
Samba could allow a remote authenticated attacker to bypass security restrictions, caused by an incomplete access check on dnsHostName. An attacker could exploit this vulnerability to delete the “dnsHostname” attribute from any object in the directory.
CVE-2023-0922 CVSS:5.9
Samba could allow a remote attacker to obtain sensitive information, caused by the failure to allow only passwords to be set and changed over LDAP over an encrypted connection. By using a Kerberos secured LDAP connection against a Samba AD DC, an attacker could exploit this vulnerability to obtain newly set passwords.
Impact
- Information Disclosure
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-0614
- CVE-2023-0225
- CVE-2023-0922
Affected Vendors
Samba
Affected Products
- Samba 4.15
- Samba 4.1.1
- Samba 4.1.0
- Samba 4.0.9
- Samba 4.0.7
- Samba 4.0.8
- Samba 4.0.6
- Samba 4.0.5
- Samba 4.0.2
- Samba 4.0.4
- Samba 4.0.11
- Samba 4.0.10
- Samba 4.0.1
- Samba 4.1.4
- Samba 4.1.5
- Samba 4.1.3
- Samba 4.0.14
- Samba 4.0.15
- Samba 4.0.12
- Samba 4.0.13
- Samba 4.0.17
- Samba 4.1.7
Remediation
Refer to Samba Website for patch, upgrade or suggested workaround information.