CVE-2022-32744

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Samba (affected versions not specified)

Description The issue is related to errors during the authentication procedure in the Samba network file system. It allows a remote attacker to change the password of any user and gain full access to the account. Specifically, the Key Distribution Center (KDC) in Samba accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Buffer Overflow

Use After Free

Authentication Bypass by Spoofing

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-119CWE-457CWE-416CWE-320CWE-304CWE-290

Related Identifiers

ALT-PU-2022-2322

ALT-PU-2022-2438

ALT-PU-2023-1616

ALT-PU-2024-14683

AZL-10663

AZL-37014

BDU:2022-04687

BDU:2022-04911

BDU:2022-04913

BDU:2022-05290

CVE-2022-32744

DSA-5205-1

MGASA-2022-0299

OESA-2022-1798

OESA-2022-1816

OESA-2022-1817

OPENSUSE-SU-2022_2586-1

OPENSUSE-SU-2022_2659-1

OPENSUSE-SU-2022_4395-1

OPENSUSE-SU-2023_0160-1

OPENSUSE-SU-2024:12243-1

ROSA-SA-2022-2062

SUSE-SU-2022:2582-1

SUSE-SU-2022:2586-1

SUSE-SU-2022:2586-2

SUSE-SU-2022:2659-1

SUSE-SU-2022:4395-1

SUSE-SU-2023:0081-1

SUSE-SU-2023:0160-1

USN-5542-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Red Os

Samba

Suse

Ubuntu

CVE-2022-32744

Weakness Enumeration

Related Identifiers

Affected Products

References · 118