Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-20251HistoryMar 06, 2023 - 11:15 p.m.
CVE-2021-20251
2023-03-0623:15:10
Debian Security Bug Tracker
security-tracker.debian.org
18
samba
password lockout
race condition
brute force
unix
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
48.4%
A flaw was found in samba. A race condition in the password lockout code may lead to the risk of brute force attacks being successful if special conditions are met.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | samba | < 2:4.17.2+dfsg-3 | samba_2:4.17.2+dfsg-3_all.deb |
| Debian | 11 | all | samba | <= 2:4.13.13+dfsg-1~deb11u6 | samba_2:4.13.13+dfsg-1~deb11u6_all.deb |
| Debian | 999 | all | samba | < 2:4.17.2+dfsg-3 | samba_2:4.17.2+dfsg-3_all.deb |
| Debian | 13 | all | samba | < 2:4.17.2+dfsg-3 | samba_2:4.17.2+dfsg-3_all.deb |
Related
osv
osv
CVE-2021-20251
2023-03-06 23:15:10
samba regression
2023-01-26 21:36:01
samba vulnerabilities
2023-01-24 12:58:42
veracode
veracode
Authentication Bypass
2022-11-17 15:20:24
cvelist
cvelist
CVE-2021-20251
2023-03-06 00:00:00
cve
cve
CVE-2021-20251
2023-03-06 23:15:10
ubuntucve
ubuntucve
CVE-2021-20251
2022-10-27 00:00:00
nvd
nvd
CVE-2021-20251
2023-03-06 23:15:10
prion
prion
Race condition
2023-03-06 23:15:00
openvas
openvas
Samba 4.1 < 4.17.1 Improper Authentication (CVE-2021-20251)
2022-10-24 00:00:00
openSUSE: Security Advisory for samba (SUSE-SU-2023:0162-1)
2024-03-04 00:00:00
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2023-2276)
2023-07-04 00:00:00
redhatcve
redhatcve
CVE-2021-20251
2023-03-03 19:29:32
nessus
nessus
EulerOS 2.0 SP11 : samba (EulerOS-SA-2023-2276)
2023-07-04 00:00:00
EulerOS 2.0 SP11 : samba (EulerOS-SA-2023-2300)
2023-07-04 00:00:00
SUSE SLES15 Security Update : samba (SUSE-SU-2023:0162-1)
2023-01-27 00:00:00
ubuntu
ubuntu
Samba vulnerabilities
2023-01-24 00:00:00
Samba regression
2023-01-26 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
48.4%
Related for DEBIANCVE:CVE-2021-20251