vulnerability

Debian: CVE-2020-25719: samba -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	Feb 18, 2022	Nov 4, 2022	Mar 30, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

Feb 18, 2022

Added

Nov 4, 2022

Modified

Mar 30, 2026

Description

A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise.

Solution

debian-upgrade-samba

References

CVE-2020-25719
https://attackerkb.com/topics/CVE-2020-25719
CWE-287
CWE-362
DEBIAN-DSA-5003-1
EUVD-EUVD-2020-18373
https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-18373

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report