CVE-2020-25722

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-25722
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-25722.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2020-25722
Downstream
Related
Published
2022-02-18T18:15:08.643Z
Modified
2026-04-16T00:08:13.501042959Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.

Database specific 
{
    "unresolved_ranges": [
        {
            "source": "CPE_FIELD",
            "extracted_events": [
                {
                    "last_affected": "18.04"
                }
            ],
            "cpe": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "20.04"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "21.04"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:canonical:ubuntu_linux:21.04:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "21.10"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "10.0"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "9.0"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "33"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "34"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*"
        },
        {
            "extracted_events": [
                {
                    "last_affected": "35"
                }
            ],
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*"
        }
    ]
}
References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events
Introduced
df33344d8eb40221d60c99931690703a11d91bc2
Fixed
db11778b57610e24324aa4342f89918f66157d71
Introduced
9b49519cae3e967af9ea48dc5fcfb6c145e31db4
Fixed
9312b1832e5a808a63fc7f9e7d6e70348cc9eb86
Introduced
fc8342bd26d1c55ca5780b427f675f31147b27f9
Fixed
7d0c030d4233974c4b9463dad44efdb05e6186f1
Database specific 
{
    "extracted_events": [
        {
            "introduced": "4.0.0"
        },
        {
            "fixed": "4.13.14"
        },
        {
            "introduced": "4.14.0"
        },
        {
            "fixed": "4.14.10"
        },
        {
            "introduced": "4.15.0"
        },
        {
            "fixed": "4.15.2"
        }
    ],
    "source": "CPE_FIELD",
    "cpe": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*"
}

Affected versions

ldb-2.*
ldb-2.3.1
ldb-2.3.2
ldb-2.4.1
samba-4.*
samba-4.14.0
samba-4.14.3
samba-4.14.5
samba-4.14.6
samba-4.14.7
samba-4.14.8
samba-4.14.9
samba-4.15.0
samba-4.15.1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-25722.json"