Vulnerability identifier: #VU52748
Vulnerability risk: Medium
CVSSv3.1:
CVE-ID:
CWE-ID:
Exploitation vector: Local network
Exploit availability:
Vulnerable software:
Samba
Server applications /
Directory software, identity management
Vendor: Samba
Description
The vulnerability allows a remote user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when mapping Windows group identities (SIDs) into unix group identities (gids), which resulted into negative idmap cache entries created in the Samba server process token. An attacker who can manage to trigger the vulnerability can crash the Samba server or potentially perform unauthorized actions on the system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Samba: 4.14.0 - 4.14.3, 4.13.0 - 4.13.7, 4.12.0 - 4.12.14, 4.11.0 - 4.11.17, 4.10.0 - 4.10.18, 4.9.0 - 4.9.18, 4.8.0 - 4.8.12, 4.7.0 - 4.7.12, 4.6.0 - 4.6.16, 4.5.0 - 4.5.16, 4.4.0 - 4.4.16, 4.3.0 - 4.3.13, 4.2.0 - 4.2.14, 4.1.0 - 4.1.23, 4.0.0 - 4.0.26, 3.6.0 - 3.6.25
Fixed software versions
CPE
External links
http://www.samba.org/samba/security/CVE-2021-20254.html
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?