EPSS
Percentile
76.5%
A flaw was found in the way Samba initiated signed DCE/RPC connections. A man-in-the-middle attacker could use this flaw to downgrade the connection to not use signing and therefore impersonate the server.
bugzilla.redhat.com/show_bug.cgi?id=1351955