Samba security updates to patch multiple high-severity vulnerabilities have been released. The high-severity vulnerabilities when successfully exploited can allow access to attackers on affected systems. The vulnerabilities are tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141 have been patched in versions 4.17.4, 4.16.8 and 4.15.13 released on December 15, 2022.
Samba is an open-source Windows interoperability suite for Linux, Unix, and macOS operating systems. Offering file server, printing, and Active Directory services.
Samba Multiple High Severity Vulnerabilities in brief:
- CVE-2022-38023 (CVSS score: 8.1) – Use of weak RC4-HMAC Kerberos encryption type in the NetLogon Secure Channel
- CVE-2022-37966 (CVSS score: 8.1) – An elevation of privilege vulnerability in Windows Kerberos RC4-HMAC
- CVE-2022-37967 (CVSS score: 7.2) – An elevation of privilege vulnerability in Windows Kerberos
- CVE-2022-45141 (CVSS score: 8.1) – Use of RC4-HMAC encryption when issuing Kerberos tickets in Samba Active Directory domain controller (AD DC) using Heimdal
Talking about the CVE-2022-37966 vulnerability, the company said, “An unauthenticated attacker could conduct an attack that could leverage cryptographic protocol vulnerabilities in RFC 4757 (Kerberos encryption type RC4-HMAC-MD5) and MS-PAC (Privilege Attribute Certificate Data Structure specification) to bypass security features in a Windows AD environment.”
Earlier this week the U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week published 41 Industrial Control Systems (ICS) advisories pertaining to various flaws on Siemens and Prosys OPC products and more.
FBI’s Info Sharing Network ‘InfraGard’ Hacked
Ex-Twitter Employee Jailed for 3.5 Years for Spying on Behalf of Saudi Arabia
GitHub Offers Free Secret Scanning for All Public Repositories