vulnerability

Samba CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD Directory not automatic

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:S/C:P/I:P/A:N)	Jan 21, 2020	Jan 24, 2020	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:N)

Published

Jan 21, 2020

Added

Jan 24, 2020

Modified

Mar 27, 2026

Description

There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away on all domain controllers.

Solutions

samba-upgrade-4_10_12samba-upgrade-4_11_5samba-upgrade-4_9_18

References

CVE-2019-14902
https://attackerkb.com/topics/CVE-2019-14902
CWE-284
EUVD-EUVD-2019-6007
http://www.samba.org/samba/security/CVE-2019-14902.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2019-6007

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today