AZL-36996

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-36996.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-36996

Upstream

CVE-2020-25722

Published

2022-02-18T18:15:08Z

Modified

2026-04-01T05:13:07.935128Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

CVE-2020-25722 affecting package samba for versions less than 4.18.3-1

Details

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.

References

https://nvd.nist.gov/vuln/detail/CVE-2020-25722

Affected packages

Azure Linux:3 / samba

Package

Name: samba
Purl: pkg:rpm/azure-linux/samba

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.3-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-36996.json"