Lucene search
RedhatCVE-2022-1615HistorySep 01, 2022 - 9:15 p.m.
CVE-2022-1615
2022-09-0121:15:08
CWE-330
redhat
web.nvd.nist.gov
241
4
cve
2022
samba
gnutls
gnutls_rnd()
predictable
random values
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.5
Confidence
High
EPSS
0.001
Percentile
38.5%
In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.
Affected configurations
Node
sambasambaRange4.1.0≥
Node
fedoraprojectfedoraMatch37
| Vendor | Product | Version | CPE |
|---|---|---|---|
| samba | samba | * | cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* |
| fedoraproject | fedora | 37 | cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Samba",
"versions": [
{
"version": "Samba 4.1 and newer",
"status": "affected"
}
]
}
]References
Social References
More
Related
nessus
nessus
RHEL 8 : samba (RHSA-2023:2987)
2023-05-16 00:00:00
AlmaLinux 9 : samba (ALSA-2023:2519)
2023-05-14 00:00:00
Oracle Linux 8 : samba (ELSA-2023-2987)
2023-05-24 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-1615 affecting package samba 4.12.5-6
2024-09-19 09:11:58
redhatcve
redhatcve
CVE-2022-1615
2022-08-30 14:41:03
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3270-1)
2022-09-15 00:00:00
Samba Multiple Vulnerabilities (Sep 2022)
2022-09-15 00:00:00
openSUSE: Security Advisory for samba (SUSE-SU-2022:3244-1)
2022-09-13 00:00:00
oraclelinux
oraclelinux
samba security, bug fix, and enhancement update
2023-05-23 00:00:00
samba security, bug fix, and enhancement update
2023-05-15 00:00:00
veracode
veracode
Information Disclosure
2022-10-15 18:35:37
alpinelinux
alpinelinux
CVE-2022-1615
2022-09-01 21:15:08
redhat
redhat
(RHSA-2023:2987) Low: samba security, bug fix, and enhancement update
2023-05-16 06:00:11
(RHSA-2023:2519) Low: samba security, bug fix, and enhancement update
2023-05-09 05:13:11
(RHSA-2024:0423) Moderate: samba security update
2024-01-24 14:40:29
almalinux
almalinux
Low: samba security, bug fix, and enhancement update
2023-05-09 00:00:00
Low: samba security, bug fix, and enhancement update
2023-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2022-1615
2022-09-01 00:00:00
debiancve
debiancve
CVE-2022-1615
2022-09-01 21:15:08
osv
osv
CVE-2022-1615
2022-09-01 21:15:08
Low: samba security, bug fix, and enhancement update
2023-05-09 00:00:00
Low: samba security, bug fix, and enhancement update
2023-05-16 00:00:00
cvelist
cvelist
CVE-2022-1615
2022-09-01 00:00:00
nvd
nvd
CVE-2022-1615
2022-09-01 21:15:08
prion
prion
Input validation
2022-09-01 21:15:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 37 Update: freeipa-4.10.0-6.fc37
2022-09-16 00:18:49
[SECURITY] Fedora 37 Update: samba-4.17.0-1.fc37
2022-09-16 00:18:49
suse
suse
Security update for samba (important)
2022-09-12 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.5
Confidence
High
EPSS
0.001
Percentile
38.5%
Related for CVE-2022-1615