samba

244 tracked vulnerabilities.

CVE-2014-0244
Samba 3.6.x-4.1.x - Denial of Service via Malformed UDP Packet
Jun 23, 2014
EPSS 0.20
CVE-2014-0239
Samba 4.0.0-4.0.17 - Denial of Service via Forged DNS Response Packet
May 28, 2014
EPSS 0.22
CVE-2014-0178
Samba 3.6.6-4.1.8 - Info Disclosure
May 28, 2014
EPSS 0.02
CVE-2014-2855
rsync < 3.1.0 - Denial of Service via Nonexistent User in Secrets File
Apr 23, 2014
EPSS 0.17
CVE-2013-6442
Samba 4.0.x < 4.0.16 and 4.1.x < 4.1.6 - Unintended ACL Removal via smbcacls Owner Set
Mar 14, 2014
EPSS 0.01
CVE-2013-4496
Samba 3.x < 3.6.23, 4.0.x < 4.0.16, 4.1.x < 4.1.6 - Unauthenticated Password Brute-Force via SAMR and RAP Interfaces
Mar 14, 2014
EPSS 0.06
CVE-2013-4408
Samba 3.x < 3.6.22, 4.0.x < 4.0.13, 4.1.x < 4.1.3 - Remote Code Execution via DCE-RPC Packet Fragment Length
Dec 10, 2013
EPSS 0.03
CVE-2013-4476
Samba 4.0.x < 4.0.11 and 4.1.x < 4.1.1 - Unprotected Private Key Exposure via World-Readable Permissions
Nov 13, 2013
EPSS 0.00
CVE-2013-4475
Samba 3.2.x-3.6.x - Unauthenticated File Restriction Bypass via Alternate Data Stream ACL Handling
Nov 13, 2013
EPSS 0.07
CVE-2013-4124
Samba 3.x-3.5.21, 3.6.x-3.6.16, 4.x-4.0.7 - Denial of Service via Malformed NTTRANS Packet
Aug 06, 2013
EPSS 0.84
CVE-2013-0454
Canonical Ubuntu Linux < 3.6.5 - Access Control
Mar 26, 2013
EPSS 0.02
CVE-2013-1863
Samba 4.x < 4.0.4 - Authenticated Arbitrary File Manipulation via Non-Default CIFS Shares
Mar 19, 2013
EPSS 0.00
CVE-2013-0214
Samba 3.x < 3.5.21, 3.6.x < 3.6.12, 4.x < 4.0.2 - Cross-Site Request Forgery in SWAT
Feb 02, 2013
EPSS 0.05
CVE-2013-0213
Samba 3.x < 3.5.21, 3.6.x < 3.6.12, 4.x < 4.0.2 - Clickjacking via FRAME or IFRAME Elements
Feb 02, 2013
EPSS 0.11
CVE-2013-0172
Samba 4.0.x < 4.0.1 - Authenticated LDAP Object Modification via Improper Access Control Entry Interpretation
Jan 17, 2013
EPSS 0.00
CVE-2012-6150
Samba < 4.1.2 - Authentication Bypass via Invalid Group Name Handling
Dec 03, 2013
EPSS 0.00
CVE-2012-2111
Samba 3.4.x-3.4.16, 3.5.x-3.5.14, 3.6.x-3.6.4 - Authenticated Privilege Escalation via LSA RPC Procedures
Apr 30, 2012
EPSS 0.02
CVE-2012-1182
Samba < 3.4.16, 3.5.x < 3.5.14, 3.6.x < 3.6.4 - Remote Code Execution via RPC Array Length Validation Bypass
Apr 10, 2012
EPSS 0.79
CVE-2012-0870
Samba 3.0 - Heap-Based Buffer Overflow via Batched AndX Request
Feb 23, 2012
EPSS 0.47
CVE-2012-0817
Samba 3.6.x - Denial of Service via Connection Request Memory Leak
Jan 30, 2012
EPSS 0.08
CVE-2011-3585 MEDIUM
Samba 3.6 - Denial of Service via Race Condition in mount.cifs and umount.cifs
Dec 31, 2019
CVSS 4.7
EPSS 0.00
CVE-2011-2411
HP NonStop Servers H06.x-J06.x with Samba - Authenticated Remote Code Execution
Oct 02, 2011
EPSS 0.01
CVE-2011-2724
Samba < 3.5.10 - Denial of Service via Improper Input Validation in check_mtab Function
Sep 06, 2011
EPSS 0.01
CVE-2011-2694
Samba 3.x < 3.5.10 - Authenticated Cross-Site Scripting via SWAT Username Parameter
Jul 29, 2011
EPSS 0.02
CVE-2011-2522
Samba 3.x < 3.5.10 - Cross-Site Request Forgery in SWAT
Jul 29, 2011
EPSS 0.18
Products
samba 210 rsync 24 cifs-utils 4 ppp 3 jitterbug 1 samba_server 1 volume_service 1
Quick Filters
Critical CVEs With Exploits In CISA KEV