CVE-2023-0225

Опубликовано: 03 апр. 2023

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

Ссылки

https://security.gentoo.org/glsa/202309-06
https://security.netapp.com/advisory/ntap-20230406-0007/
Third Party Advisory
https://www.samba.org/samba/security/CVE-2023-0225.html
Mitigation
Vendor Advisory
https://security.gentoo.org/glsa/202309-06
https://security.netapp.com/advisory/ntap-20230406-0007/
Third Party Advisory
https://www.samba.org/samba/security/CVE-2023-0225.html
Mitigation
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*

Версия от 4.17.0 (включая) до 4.17.7 (исключая)

cpe:2.3:a:samba:samba:4.18.0:-:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.18.0:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.18.0:rc2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.18.0:rc3:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.18.0:rc4:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00435

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-732

Связанные уязвимости

CVE-2023-0225

CVSS3: 4.3

ubuntu

почти 3 года назад

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

CVE-2023-0225

CVSS3: 4.3

redhat

почти 3 года назад

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

CVE-2023-0225

CVSS3: 4.3

msrc

больше 1 года назад

Описание отсутствует

CVE-2023-0225

CVSS3: 4.3

debian

почти 3 года назад

A flaw was found in Samba. An incomplete access check on dnsHostName a ...

GHSA-cpvm-gppj-rqq7

CVSS3: 4.3

github

почти 3 года назад

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

EPSS

Процентиль: 62%

0.00435

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-732