Denial Of Service (DoS)

2023-08-0610:02:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

denial of service

dos

samba

rpc request

buffer overflow

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

45.6%

JSON

dbus is vulnerable to Denial of Service (DoS) attacks. This vulnerability occurs when Samba parses a specially crafted RPC request. If the request is valid, Samba could overflow a buffer and crash.

CPENameOperatorVersion
dbus:sideq1.12.20-2
dbus:sideq1.12.20-1
dbuseq1.12.8__13.el8
dbuseq1.12.8__12.el8_4.2
dbuseq1.12.8__14.el8
dbuseq1.10.24__15.el7
dbuseq1.12.8__23.el8
dbuseq1.12.8__11.el8
dbuseq1.12.8__19.el8
dbuseq1.10.24__13.el7_6

Name	Operator	Version
dbus:sid	eq	1.12.20-2
dbus:sid	eq	1.12.20-1
dbus	eq	1.12.8__13.el8
dbus	eq	1.12.8__12.el8_4.2
dbus	eq	1.12.8__14.el8
dbus	eq	1.10.24__15.el7
dbus	eq	1.12.8__23.el8
dbus	eq	1.12.8__11.el8
dbus	eq	1.12.8__19.el8
dbus	eq	1.10.24__13.el7_6