CVE-2026-3012
HIGHSamba: group policy certificate enrollment uses http:// without validation
Title source: cnaDescription
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect network traffic could exploit this behavior to supply a malicious certificate authority certificate, potentially allowing interception or spoofing of trusted communications.
References (7)
Core 7
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
RHSA-2026:22963
https://access.redhat.com/errata/RHSA-2026:22963
Vendor Advisory vendor-advisory
x_refsource_redhat
RHSA-2026:22644
https://access.redhat.com/errata/RHSA-2026:22644
Vendor Advisory vendor-advisory
x_refsource_redhat
RHSA-2026:25049
https://access.redhat.com/errata/RHSA-2026:25049
Vendor Advisory vendor-advisory
x_refsource_redhat
RHSA-2026:25979
https://access.redhat.com/errata/RHSA-2026:25979
Vdb Entry, X_Refsource_Redhat vdb-entry
x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2026-3012
Issue Tracking, X_Refsource_Redhat issue-tracking
x_refsource_redhat
RHBZ#2447319
https://bugzilla.redhat.com/show_bug.cgi?id=2447319
Scores
CVSS v3
8.0
EPSS
0.0019
EPSS Percentile
8.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-345
Status
published
Products (14)
Red Hat/Red Hat Enterprise Linux 10
Red Hat/Red Hat Enterprise Linux 10
0:4.23.5-109.el10_2
Red Hat/Red Hat Enterprise Linux 6
Red Hat/Red Hat Enterprise Linux 7
Red Hat/Red Hat Enterprise Linux 8
Red Hat/Red Hat Enterprise Linux 8
0:4.19.4-16.el8_10
Red Hat/Red Hat Enterprise Linux 9
Red Hat/Red Hat Enterprise Linux 9
0:4.23.5-10.el9_8
Red Hat/Red Hat Enterprise Linux 9.6 Extended Update Support
0:4.21.3-14.el9_6.1
Red Hat/Red Hat OpenShift Container Platform 4
... and 4 more
Published
May 27, 2026
Tracked Since
May 27, 2026