cbcvebase.
CVE-2015-2535
published 2015-09-09

CVE-2015-2535: Active Directory in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service…

PriorityP421medium4CVSS 2.0
AVNACLAuSCNINAP
EPSS
11.53%
95.5th percentile
Active Directory in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service (service outage) by creating multiple machine accounts, aka "Active Directory Denial of Service Vulnerability."

Affected

16 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiansamba< samba 2:4.1.22+dfsg-1 (bookworm)samba 2:4.1.22+dfsg-1 (bookworm)
microsoftwindows_server_2008
microsoftwindows_server_2012
sambasamba>= 0 < 2:4.1.22+dfsg-12:4.1.22+dfsg-1
sambasamba>= 0 < 2:4.1.22+dfsg-12:4.1.22+dfsg-1
sambasamba>= 0 < 2:4.1.22+dfsg-12:4.1.22+dfsg-1
sambasamba>= 0 < 2:4.1.22+dfsg-12:4.1.22+dfsg-1
sambasamba>= 4.0.0 < 4.1.224.1.22
sambasamba>= 4.2.0 < 4.2.74.2.7
sambasamba>= 4.3.0 < 4.3.34.3.3

CVSS provenance

nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM
vendor_debian4.0MEDIUM
vendor_redhat4.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.