CVE-2023-0225 — Incorrect Permission Assignment in Samba

CWE-732 — Incorrect Permission Assignment6 documents6 sources

Severity

4.3MEDIUMNVD

EPSS

0.4%

top 42.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba Msrc Azl3 Samba 4.18.3-1 ON Azure Linux 3.0 +2 more

Timeline

PublishedApr 3

Latest updateApr 11

Description

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages7 packages

▶NVDsamba/samba4.17.0 — 4.17.7+1

▶debiandebian/samba< samba 2:4.17.7+dfsg-1 (bookworm)

▶Debiansamba/samba< 2:4.17.7+dfsg-1+2

▶CVEListV5samba/sambasamba 4.18.1, samba 4.17.7, samba 4.16.10

▶msrcmsrc/azl3_samba_4.18.3-1_on_azure_linux_3.0

🔴Vulnerability Details

GHSA

GHSA-cpvm-gppj-rqq7: A flaw was found in Samba↗2023-04-04

▶

OSV

CVE-2023-0225: A flaw was found in Samba↗2023-04-03

▶

📋Vendor Advisories

Microsoft

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.↗2023-04-11

▶

Red Hat

samba: AD DC "dnsHostname" attribute can be deleted by unprivileged authenticated users↗2023-03-29

▶

Debian

CVE-2023-0225: samba - A flaw was found in Samba. An incomplete access check on dnsHostName allows auth...↗2023

▶