Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2020-25717: CVE-2020-25717 samba: Active Directory (AD) domain user could become root on domain members (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Red Hat: CVE-2020-25717: CVE-2020-25717 samba: Active Directory (AD) domain user could become root on domain members (Multiple Advisories)

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:N)

Published

12/13/2021

Created

12/15/2021

Added

12/14/2021

Modified

12/15/2023

Description

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Solution(s)

redhat-upgrade-ctdb
redhat-upgrade-ctdb-debuginfo
redhat-upgrade-ctdb-tests
redhat-upgrade-ctdb-tests-debuginfo
redhat-upgrade-libsmbclient
redhat-upgrade-libsmbclient-debuginfo
redhat-upgrade-libsmbclient-devel
redhat-upgrade-libwbclient
redhat-upgrade-libwbclient-debuginfo
redhat-upgrade-libwbclient-devel
redhat-upgrade-python3-samba
redhat-upgrade-python3-samba-debuginfo
redhat-upgrade-python3-samba-test
redhat-upgrade-samba
redhat-upgrade-samba-client
redhat-upgrade-samba-client-debuginfo
redhat-upgrade-samba-client-libs
redhat-upgrade-samba-client-libs-debuginfo
redhat-upgrade-samba-common
redhat-upgrade-samba-common-libs
redhat-upgrade-samba-common-libs-debuginfo
redhat-upgrade-samba-common-tools
redhat-upgrade-samba-common-tools-debuginfo
redhat-upgrade-samba-dc
redhat-upgrade-samba-dc-libs
redhat-upgrade-samba-debuginfo
redhat-upgrade-samba-debugsource
redhat-upgrade-samba-devel
redhat-upgrade-samba-krb5-printing
redhat-upgrade-samba-krb5-printing-debuginfo
redhat-upgrade-samba-libs
redhat-upgrade-samba-libs-debuginfo
redhat-upgrade-samba-pidl
redhat-upgrade-samba-python
redhat-upgrade-samba-python-test
redhat-upgrade-samba-test
redhat-upgrade-samba-test-debuginfo
redhat-upgrade-samba-test-libs
redhat-upgrade-samba-test-libs-debuginfo
redhat-upgrade-samba-vfs-glusterfs
redhat-upgrade-samba-vfs-glusterfs-debuginfo
redhat-upgrade-samba-vfs-iouring
redhat-upgrade-samba-vfs-iouring-debuginfo
redhat-upgrade-samba-winbind
redhat-upgrade-samba-winbind-clients
redhat-upgrade-samba-winbind-clients-debuginfo
redhat-upgrade-samba-winbind-debuginfo
redhat-upgrade-samba-winbind-krb5-locator
redhat-upgrade-samba-winbind-krb5-locator-debuginfo
redhat-upgrade-samba-winbind-modules
redhat-upgrade-samba-winbind-modules-debuginfo
redhat-upgrade-samba-winexe
redhat-upgrade-samba-winexe-debuginfo

References

CVE-2020-25717
RHSA-2021:5082
RHSA-2021:5192
RHSA-2022:0008
RHSA-2022:0074

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2020-25717: CVE-2020-25717 samba: Active Directory (AD) domain user could become root on domain members (Multiple Advisories)

Red Hat: CVE-2020-25717: CVE-2020-25717 samba: Active Directory (AD) domain user could become root on domain members (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.