Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-25717HistoryFeb 18, 2022 - 6:15 p.m.
CVE-2020-25717
2022-02-1818:15:08
Debian Security Bug Tracker
security-tracker.debian.org
44
samba
user mapping
privilege escalation
flaw
authentication
unix
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:C/I:C/A:N
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
41.3%
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | samba | < 2:4.13.14+dfsg-1 | samba_2:4.13.14+dfsg-1_all.deb |
| Debian | 11 | all | samba | < 2:4.13.13+dfsg-1~deb11u2 | samba_2:4.13.13+dfsg-1~deb11u2_all.deb |
| Debian | 999 | all | samba | < 2:4.13.14+dfsg-1 | samba_2:4.13.14+dfsg-1_all.deb |
| Debian | 13 | all | samba | < 2:4.13.14+dfsg-1 | samba_2:4.13.14+dfsg-1_all.deb |
Related
samba
samba
A user in an AD Domain could become root on
2021-11-09 00:00:00
Kerberos acceptors need easy access to stable
2021-11-09 00:00:00
cve
cve
CVE-2020-25717
2022-02-18 18:15:08
nessus
nessus
osv
osv
CVE-2020-25717
2022-02-18 18:15:08
samba - security update
2021-11-30 00:00:00
Critical: samba security and bug fix update
2022-01-31 15:40:41
suse
suse
Security update for samba (important)
2021-11-15 00:00:00
Security update for samba (important)
2021-11-16 00:00:00
Security update for samba (important)
2021-11-15 00:00:00
f5
f5
K75547109 : Samba vulnerability CVE-2020-25717
2022-02-09 00:00:00
openvas
openvas
openSUSE: Security Advisory for samba (openSUSE-SU-2021:3662-1)
2021-11-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:3662-1)
2021-11-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:3747-1)
2021-11-21 00:00:00
cnvd
cnvd
Samba permission permission and access control issues vulnerability
2021-11-12 00:00:00
redhat
redhat
(RHSA-2022:0133) Important: Red Hat Virtualization Host security and bug fix update [ovirt-4.4.9] Async #2
2022-01-12 14:15:32
(RHSA-2022:0332) Critical: samba security and bug fix update
2022-01-31 15:40:41
(RHSA-2022:0328) Critical: samba security and bug fix update
2022-01-31 15:40:21
cvelist
cvelist
CVE-2020-25717
2022-02-18 00:00:00
nvd
nvd
CVE-2020-25717
2022-02-18 18:15:08
alpinelinux
alpinelinux
CVE-2020-25717
2022-02-18 18:15:08
ibm
ibm
prion
prion
Privilege escalation
2022-02-18 18:15:00
ubuntucve
ubuntucve
CVE-2020-25717
2021-11-09 00:00:00
redhatcve
redhatcve
CVE-2020-25717
2022-05-07 14:00:28
veracode
veracode
Privilege Escalation
2021-11-12 15:19:45
cbl_mariner
cbl_mariner
CVE-2020-25717 affecting package samba 4.12.5-6
2024-10-01 09:12:11
oraclelinux
oraclelinux
samba security and bug fix update
2021-12-17 00:00:00
samba security update
2021-12-14 00:00:00
rocky
rocky
samba security and bug fix update
2022-01-31 15:40:41
samba security update
2021-12-13 08:15:38
debian
debian
[SECURITY] [DSA 5015-1] samba security update
2021-11-30 12:19:55
[SECURITY] [DSA 5071-1] samba security update
2022-02-11 15:11:29
[SECURITY] [DSA 5003-1] samba security update
2021-11-09 18:46:42
centos
centos
ctdb, libsmbclient, libwbclient, samba security update
2021-12-21 21:39:51
ctdb, libsmbclient, libwbclient, samba security update
2022-02-01 18:03:11
almalinux
almalinux
Critical: samba security and bug fix update
2022-01-31 15:40:41
Important: samba security update
2021-12-13 08:15:38
amazon
amazon
Critical: samba
2022-02-03 19:29:00
Critical: samba
2022-02-10 21:59:00
ubuntu
ubuntu
Samba regression
2021-12-13 00:00:00
Samba vulnerabilities
2021-12-06 00:00:00
Samba vulnerabilities
2021-11-11 00:00:00
cloudfoundry
cloudfoundry
USN-5174-2: Samba regression | Cloud Foundry
2022-01-20 00:00:00
USN-5174-1: Samba vulnerabilities | Cloud Foundry
2022-01-20 00:00:00
freebsd
freebsd
samba -- Multiple Vulnerabilities
2021-11-10 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: libldb-2.3.2-1.fc34
2021-12-01 01:14:11
[SECURITY] Fedora 35 Update: samba-4.15.2-3.fc35
2021-11-19 01:16:32
[SECURITY] Fedora 35 Update: freeipa-4.9.7-4.fc35
2021-11-19 01:16:31
mageia
mageia
Updated samba packages fix security vulnerability
2021-12-26 03:14:13
cisa
cisa
Samba Releases Security Updates
2021-11-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.14.10-alt1
2021-11-07 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2450
2024-07-15 08:46:32
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:C/I:C/A:N
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
41.3%
Related for DEBIANCVE:CVE-2020-25717