#VU58091 Input validation error in Samba


Published: 2021-11-10 | Updated: 2022-03-22

Vulnerability identifier: #VU58091

Vulnerability risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-23192

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Samba
Server applications / Directory software, identity management

Vendor: Samba

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the DCE/RPC fragment injection issue. A remote attacker can replace subsequent fragments in requests with their own data and alter the server behavior.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Samba: 4.10.0 - 4.10.18, 4.11.0 - 4.11.17, 4.12.0 - 4.12.15, 4.13.0 - 4.13.13, 4.14.0 - 4.14.9, 4.15.0 - 4.15.1

CPE

External links
http://www.samba.org/samba/security/CVE-2021-23192.html

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Spectrum Protect Plus
IBM Spectrum Scale update for Samba
Multiple vulnerabilities in QNAP QTS
Red Hat Enterprise Linux 8.4 update for samba
Red Hat Enterprise Linux 8 update for samba
Ubuntu update for samba
Ubuntu update for samba
Red Hat Gluster Storage Server for On-premise 3 update for samba
Debian update for samba
Ubuntu update for samba