CVE-2020-25717 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.1 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 66%

Affected Products (NVD)

Vendor	Product	Version
samba	samba	3.0.0 ≤ 𝑥 < 4.13.14
samba	samba	4.14.0 ≤ 𝑥 < 4.14.10
samba	samba	4.15.0 ≤ 𝑥 < 4.15.2
debian	debian_linux	9.0
debian	debian_linux	10.0
redhat	codeready_linux_builder	-
redhat	gluster_storage	3.0
redhat	gluster_storage	3.5
redhat	openstack	16.1
redhat	openstack	16.2
redhat	virtualization	4.0
redhat	virtualization_host	4.0
redhat	enterprise_linux	7.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_eus	8.2
redhat	enterprise_linux_eus	8.4
redhat	enterprise_linux_for_ibm_z_systems	7.0
redhat	enterprise_linux_for_ibm_z_systems	8.0
redhat	enterprise_linux_for_ibm_z_systems_eus	8.2
redhat	enterprise_linux_for_ibm_z_systems_eus	8.4
redhat	enterprise_linux_for_power_big_endian	7.0
redhat	enterprise_linux_for_power_little_endian	7.0
redhat	enterprise_linux_for_power_little_endian	8.0
redhat	enterprise_linux_for_power_little_endian_eus	8.2
redhat	enterprise_linux_for_power_little_endian_eus	8.4
redhat	enterprise_linux_for_scientific_computing	7.0
redhat	enterprise_linux_resilient_storage	7.0
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_server_aus	8.2
redhat	enterprise_linux_server_aus	8.4
redhat	enterprise_linux_server_tus	8.4
redhat	enterprise_linux_server_update_services_for_sap_solutions	8.2
redhat	enterprise_linux_server_update_services_for_sap_solutions	8.4
redhat	enterprise_linux_tus	8.2
redhat	enterprise_linux_workstation	7.0
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	20.04
canonical	ubuntu_linux	21.04
canonical	ubuntu_linux	21.10

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

samba

bookworm	2:4.17.12+dfsg-0+deb12u1 fixed
bookworm (security)	2:4.17.12+dfsg-0+deb12u1 fixed
bullseye	2:4.13.13+dfsg-1~deb11u6 fixed
bullseye (security)	2:4.13.13+dfsg-1~deb11u6 fixed
sid	2:4.21.1+dfsg-2 fixed
trixie	2:4.21.1+dfsg-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

samba

bionic	Fixed 2:4.7.6+dfsg~ubuntu-0ubuntu2.26 released
focal	Fixed 2:4.13.14+dfsg-0ubuntu0.20.04.1 released
hirsute	Fixed 2:4.13.14+dfsg-0ubuntu0.21.04.1 released
impish	Fixed 2:4.13.14+dfsg-0ubuntu0.21.10.1 released
jammy	Fixed 2:4.13.14+dfsg-0ubuntu1 released
kinetic	Fixed 2:4.13.14+dfsg-0ubuntu1 released
lunar	Fixed 2:4.13.14+dfsg-0ubuntu1 released
mantic	Fixed 2:4.13.14+dfsg-0ubuntu1 released
noble	Fixed 2:4.13.14+dfsg-0ubuntu1 released
trusty	needed
xenial	needed

openSUSE / SLES Releases

openSUSE Product

Release

ldb-tools

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

libldb-devel

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

libldb2

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

libldb2-32bit

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

python3-ldb

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

python3-ldb-devel

suse enterprise desktop 15 SP3	2.2.2-3.3.1 fixed
suse enterprise sap 15 SP3	2.2.2-3.3.1 fixed
suse enterprise server 15 SP3	2.2.2-3.3.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

ctdb

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

ctdb-tests

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

libsmbclient

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

libsmbclient-devel

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

libwbclient

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

libwbclient-devel

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

python3-samba

RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

python3-samba-test

RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-client

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-client-libs

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-common

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-common-libs

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-common-tools

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-dc

RHEL 7

0:4.10.16-17.el7_9

fixed

samba-dc-libs

RHEL 7

0:4.10.16-17.el7_9

fixed

samba-devel

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-krb5-printing

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-libs

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-pidl

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-python

RHEL 7

0:4.10.16-17.el7_9

fixed

samba-python-test

RHEL 7

0:4.10.16-17.el7_9

fixed

samba-test

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-test-libs

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-vfs-glusterfs

RHEL 7

0:4.10.16-17.el7_9

fixed

samba-vfs-iouring

RHEL 8

0:4.14.5-7.el8_5

fixed

samba-winbind

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-winbind-clients

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-winbind-krb5-locator

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-winbind-modules

RHEL 7	0:4.10.16-17.el7_9 fixed
RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.2 AUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 E4S	0:4.11.2-18.el8_2 fixed
RHEL 8.2 EUS	0:4.11.2-18.el8_2 fixed
RHEL 8.2 TUS	0:4.11.2-18.el8_2 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

samba-winexe

RHEL 8	0:4.14.5-7.el8_5 fixed
RHEL 8.4 AUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 E4S	0:4.13.3-8.el8_4 fixed
RHEL 8.4 EUS	0:4.13.3-8.el8_4 fixed
RHEL 8.4 TUS	0:4.13.3-8.el8_4 fixed

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://bugzilla.redhat.com/show_bug.cgi?id=2019672

https://security.gentoo.org/glsa/202309-06

https://www.samba.org/samba/security/CVE-2020-25717.html

https://bugzilla.redhat.com/show_bug.cgi?id=2019672

https://security.gentoo.org/glsa/202309-06

https://www.samba.org/samba/security/CVE-2020-25717.html