CVE-2020-25717

Опубликовано: 18 фев. 2022

Источник: debian

Описание

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.13.14+dfsg-1		package

Примечания

https://bugzilla.samba.org/show_bug.cgi?id=14556
https://bugzilla.samba.org/show_bug.cgi?id=14725
https://www.samba.org/samba/security/CVE-2020-25717.html
A new parameter "min domain uid" (defaults to 1000) has been added,
which enforces that no UNIX uid below this value will be accepted.

Связанные уязвимости

CVE-2020-25717

CVSS3: 8.1

ubuntu

почти 4 года назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

redhat

около 4 лет назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

nvd

почти 4 года назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

msrc

больше 1 года назад

Описание отсутствует

openSUSE-SU-2021:3662-1

suse-cvrf

около 4 лет назад

Security update for samba