CVE-2020-25717

Опубликовано: 18 фев. 2022

Источник: debian

EPSS Низкий

Описание

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.13.14+dfsg-1		package

Примечания

https://bugzilla.samba.org/show_bug.cgi?id=14556
https://bugzilla.samba.org/show_bug.cgi?id=14725
https://www.samba.org/samba/security/CVE-2020-25717.html
A new parameter "min domain uid" (defaults to 1000) has been added,
which enforces that no UNIX uid below this value will be accepted.

EPSS

Процентиль: 38%

0.00161

Низкий

Связанные уязвимости

CVE-2020-25717

CVSS3: 8.1

ubuntu

больше 3 лет назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

redhat

больше 3 лет назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

nvd

больше 3 лет назад

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

CVE-2020-25717

CVSS3: 8.1

msrc

8 месяцев назад

Описание отсутствует

openSUSE-SU-2021:3662-1

suse-cvrf

больше 3 лет назад

Security update for samba

EPSS

Процентиль: 38%

0.00161

Низкий