CVE-2023-3347

A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Controllers where SMB2 packet signing is mandatory. This flaw allows an attacker to perform attacks, such as a man-in-the-middle attack, by intercepting the network traffic and modifying the SMB2 messages between client and server, affecting the integrity of the data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
sambasamba
4.17.0 ≤
𝑥
< 4.17.10
sambasamba
4.18.0 ≤
𝑥
< 4.18.5
redhatstorage
3.0
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
samba
bookworm
2:4.17.12+dfsg-0+deb12u1
fixed
bookworm (security)
2:4.17.12+dfsg-0+deb12u1
fixed
bullseye
2:4.13.13+dfsg-1~deb11u6
not-affected
bullseye (security)
2:4.13.13+dfsg-1~deb11u6
fixed
buster
not-affected
sid
2:4.21.2+dfsg-4
fixed
trixie
2:4.21.2+dfsg-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
samba
bionic
not-affected
focal
not-affected
jammy
not-affected
kinetic
not-affected
lunar
Fixed 2:4.17.7+dfsg-1ubuntu1.1
released
trusty
not-affected
xenial
not-affected
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ctdb
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libnetapi
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libnetapi-devel
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libsmbclient
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libsmbclient-devel
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libwbclient
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
libwbclient-devel
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
python3-samba
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
python3-samba-dc
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
python3-samba-devel
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
python3-samba-test
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-client
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-client-libs
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-common
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-common-libs
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-common-tools
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-dc-libs
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-dcerpc
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-devel
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-krb5-printing
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-ldb-ldap-modules
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-libs
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-pidl
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-test
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-test-libs
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-tools
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-usershares
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-vfs-iouring
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-winbind
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-winbind-clients
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-winbind-krb5-locator
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-winbind-modules
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
samba-winexe
RHEL 8
0:4.17.5-3.el8_8
fixed
RHEL 8.8 AUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 E4S
0:4.17.5-3.el8_8
fixed
RHEL 8.8 EUS
0:4.17.5-3.el8_8
fixed
RHEL 8.8 TUS
0:4.17.5-3.el8_8
fixed
RHEL 9
0:4.17.5-103.el9_2
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
libnetapi
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libnetapi-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libnetapi-devel
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libsmbclient
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libsmbclient-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libsmbclient-devel
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libwbclient
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libwbclient-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
libwbclient-devel
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba-dc
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba-dc-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba-devel
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
python3-samba-test
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-client
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-client-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-client-libs
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-client-libs-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-common
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-common-libs
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-common-libs-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-common-tools
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-common-tools-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-dc-libs
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-dc-libs-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-dcerpc
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-dcerpc-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-debugsource
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-devel
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-krb5-printing
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-krb5-printing-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-ldb-ldap-modules
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-ldb-ldap-modules-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-libs
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-libs-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-pidl
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-test
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-test-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-test-libs
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-test-libs-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-tools
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-usershares
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-vfs-iouring
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-vfs-iouring-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-clients
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-clients-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-krb5-locator
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-krb5-locator-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-modules
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed
samba-winbind-modules-debuginfo
Amazon Linux 2023
2:4.17.10-0.amzn2023.0.1
fixed