CVE-2022-2031

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Samba (affected versions not specified)

Description A flaw in Samba occurs when the KDC and the kpasswd service share a single account and set of keys, allowing them to decrypt each other's tickets. This issue is related to the authentication procedure and how the KDC kpasswd service handles password change requests. A user who has been requested to change their password can exploit this flaw to obtain and use tickets to other services, potentially allowing a remote attacker to elevate privileges in the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Authentication Bypass Using an Alternate Path or Channel

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288CWE-287CWE-304

Related Identifiers

ALT-PU-2022-2322

ALT-PU-2022-2438

ALT-PU-2023-1616

ALT-PU-2024-14683

AZL-10735

AZL-37011

BDU:2022-05290

CVE-2022-2031

DSA-5205-1

MGASA-2022-0299

OESA-2022-1798

OESA-2022-1816

OESA-2022-1817

OPENSUSE-SU-2022_2586-1

OPENSUSE-SU-2022_2659-1

OPENSUSE-SU-2022_4395-1

OPENSUSE-SU-2023_0160-1

OPENSUSE-SU-2024:12243-1

SUSE-SU-2022:2582-1

SUSE-SU-2022:2586-1

SUSE-SU-2022:2586-2

SUSE-SU-2022:2659-1

SUSE-SU-2022:4395-1

SUSE-SU-2022_2582-1

SUSE-SU-2022_2586-1

SUSE-SU-2022_2659-1

SUSE-SU-2022_4395-1

SUSE-SU-2023:0081-1

SUSE-SU-2023:0160-1

SUSE-SU-2023_0081-1

USN-5542-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Red Os

Samba

Suse

Ubuntu

CVE-2022-2031

Weakness Enumeration

Related Identifiers

Affected Products

References · 100