vulnerability

Samba CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD Directory not automatic

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:S/C:P/I:P/A:N)	Jan 21, 2020	Jan 24, 2020	Aug 11, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:N)

Published

Jan 21, 2020

Added

Jan 24, 2020

Modified

Aug 11, 2025

Description

There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away on all domain controllers.

Solutions

samba-upgrade-4_10_12samba-upgrade-4_11_5samba-upgrade-4_9_18

References

CVE-2019-14902
https://attackerkb.com/topics/CVE-2019-14902
CWE-284
URL-http://www.samba.org/samba/security/CVE-2019-14902.html

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today