CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).
To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it.
The update addresses this vulnerability by changing how the KDC validates service tickets used with KCD.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.6 MEDIUM
NETWORK
HIGH
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2012
*
microsoftwindows_server_2016
-
microsoftwindows_server_2019
-
sambasamba
4.1.0 ≤
𝑥
< 4.13.13
sambasamba
4.14.0 ≤
𝑥
< 4.14.9
sambasamba
4.15.0 ≤
𝑥
< 4.15.1
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows Server
1903 Server Core
1909 Server Core
2004 Server Core
20H2 Server Core
Windows Server 2008
Service Pack 2 (x64, x86)
Service Pack 2 Server Core (x64, x86)
Windows Server 2008 R2
Service Pack 1 (x64)
Service Pack 1 Server Core (x64)
Windows Server 2012
Server Core
Standard
Windows Server 2012 R2
Server Core
Standard
Windows Server 2016
Server Core
Standard
Windows Server 2019
Server Core
Standard
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
krb5-devel
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
krb5-libs
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
krb5-pkinit
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
krb5-server
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
krb5-server-ldap
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
krb5-workstation
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
libkadm5
RHEL 8.6 AUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 E4S
0:1.18.2-16.el8_6
fixed
RHEL 8.6 EUS
0:1.18.2-16.el8_6
fixed
RHEL 8.6 TUS
0:1.18.2-16.el8_6
fixed
RHEL 9
0:1.20.1-8.el9
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
ctdb
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
ctdb-tests
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
libnetapi
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libnetapi-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libnetapi-devel
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libsmbclient
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libsmbclient-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libsmbclient-devel
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libwbclient
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libwbclient-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
libwbclient-devel
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
python3-samba
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
python3-samba-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
python3-samba-devel
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
python3-samba-test
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-client
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-client-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-client-libs
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-client-libs-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-common
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-common-libs
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-common-libs-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-common-tools
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-common-tools-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-dc-libs
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-dc-libs-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-dcerpc
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-dcerpc-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-debuginfo
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-debugsource
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-devel
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-krb5-printing
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-krb5-printing-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-ldb-ldap-modules
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-ldb-ldap-modules-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-libs
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-libs-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-pidl
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-python
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
samba-python-test
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
samba-test
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-test-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-test-libs
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-test-libs-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-usershares
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-vfs-iouring
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-vfs-iouring-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-clients
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-clients-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-krb5-locator
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-krb5-locator-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-modules
Amazon Linux 1
0:4.10.16-20.62.amzn1
fixed
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
samba-winbind-modules-debuginfo
Amazon Linux 2023
2:4.17.5-0.amzn2023.0.2
fixed
Azure Linux logo
Azure Linux Releases
Azure Package
Release
samba
Azure Linux 3.0
0:4.18.3-1.azl3
fixed