samba (SUSE:Linux Enterprise Module for Package Hub 15) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Package Hub 15 package samba, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (12)
CVE-2018-16853 — CVSS 7.5 (high): Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the…
CVE-2018-14629 — CVSS 6.5 (medium): A denial of service vulnerability was discovered in Samba's LDAP server before versions 4.7.12, 4.8.7, and 4.9.3. A CNAME loop could lead…
CVE-2019-14907 — CVSS 6.5 (medium): All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level =…
CVE-2018-16851 — CVSS 6.5 (medium): Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP…
CVE-2019-10218 — CVSS 6.5 (medium): A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a…
CVE-2018-16841 — CVSS 6.5 (medium): Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept…
CVE-2019-3880 — CVSS 5.4 (medium): A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could…
CVE-2019-14833 — CVSS 5.4 (medium): A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user…
CVE-2019-14870 — CVSS 5.4 (medium): All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos…
CVE-2019-14902 — CVSS 5.4 (medium): There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before…
CVE-2019-14861 — CVSS 5.3 (medium): All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the (poorly named) dnsserver…
CVE-2019-14847 — CVSS 4.9 (medium): A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync…