CVE-2026-4480

EUVD-2026-31828
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J"
substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by sending a specially crafted print job description that contains unescaped shell characters. This could lead to remote code execution on the affected system.
OS Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9 CRITICAL
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
redhatopenshift_container_platform
4.0
sambasamba
4.1.0 ≤
𝑥
< 4.2.1
redhatenterprise_linux
7.0
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
redhatenterprise_linux
10.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
samba
bookworm
vulnerable
bookworm (security)
2:4.17.12+dfsg-0+deb12u4
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
2:4.24.3+dfsg-1
fixed
sid
2:4.24.4+dfsg-1
fixed
trixie
vulnerable
trixie (security)
2:4.22.8+dfsg-0+deb13u2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
samba
bionic
ignored
focal
Fixed 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2
released
jammy
Fixed 2:4.15.13+dfsg-0ubuntu1.12
released
noble
Fixed 2:4.19.5+dfsg-4ubuntu9.6
released
questing
Fixed 2:4.22.3+dfsg-4ubuntu2.4
released
resolute
Fixed 2:4.23.6+dfsg-1ubuntu2.1
released
trusty
ignored
xenial
ignored
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ctdb
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
ctdb-tests
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
ldb-tools
RHEL 9
0:4.23.5-10.el9_8
fixed
libldb
RHEL 9
0:4.23.5-10.el9_8
fixed
libldb-devel
RHEL 9
0:4.23.5-10.el9_8
fixed
libnetapi
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
libnetapi-devel
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
libsmbclient
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
libsmbclient-devel
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
libwbclient
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
libwbclient-devel
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
python3-ldb
RHEL 9
0:4.23.5-10.el9_8
fixed
python3-samba
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
python3-samba-dc
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
python3-samba-devel
RHEL 8
0:4.19.4-16.el8_10
fixed
python3-samba-test
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-client
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-client-libs
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-common
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-common-libs
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-common-tools
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-dc-libs
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-dcerpc
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-devel
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-gpupdate
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-krb5-printing
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-ldb-ldap-modules
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-libs
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-pidl
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-test
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-test-libs
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-tools
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-usershares
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-vfs-iouring
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-winbind
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-winbind-clients
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-winbind-krb5-locator
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-winbind-modules
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
samba-winexe
RHEL 8
0:4.19.4-16.el8_10
fixed
RHEL 8.4 AUS
0:4.13.3-12.el8_4.1
fixed
RHEL 8.6 AUS
0:4.15.5-16.el8_6.1
fixed
RHEL 8.8 E4S
0:4.17.5-7.el8_8.1
fixed
RHEL 8.8 TUS
0:4.17.5-7.el8_8.1
fixed
RHEL 9
0:4.23.5-10.el9_8
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
ctdb
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
ctdb-tests
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
libnetapi
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libnetapi-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libnetapi-devel
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libsmbclient
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libsmbclient-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libsmbclient-devel
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libwbclient
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libwbclient-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
libwbclient-devel
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba-dc
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba-dc-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba-devel
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
python3-samba-test
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-client
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-client-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-client-libs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-client-libs-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-common
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-common-libs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-common-libs-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-common-tools
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-common-tools-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-dc
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
samba-dc-libs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-dc-libs-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-dcerpc
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-dcerpc-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-debuginfo
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-debugsource
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-devel
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-krb5-printing
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-krb5-printing-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-ldb-ldap-modules
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-ldb-ldap-modules-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-libs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-libs-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-pidl
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-python
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
samba-python-test
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
samba-test
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-test-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-test-libs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-test-libs-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-tools
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-usershares
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-vfs-glusterfs
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
samba-vfs-iouring
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-vfs-iouring-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-clients
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-clients-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-krb5-locator
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-krb5-locator-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-modules
Amazon Linux 2
0:4.10.16-24.amzn2.0.7
fixed
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed
samba-winbind-modules-debuginfo
Amazon Linux 2023
2:4.17.12-1.amzn2023.0.4
fixed