CVE-2023-0225

Summary

A flaw was found in Samba. An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.

Affected Software

VendorProductVersion RangeStatus
n/aSambasamba 4.18.1, samba 4.17.7, samba 4.16.10affected

Weaknesses

  • CWE-732: CWE-732

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References