CVE-2022-45141

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-45141
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-45141.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-45141
Downstream
Related
Published
2023-03-06T23:15:11.157Z
Modified
2026-02-05T12:08:30.858962Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption (eg aes256-cts-hmac-sha1-96).

References

Affected packages

Git / github.com/samba-team/samba

Affected ranges

Type
GIT
Repo
https://github.com/samba-team/samba
Events
Introduced
e95d85f784ae6b19f2cb42cc9039b60b146e5b69
Fixed
6cc6e233b5ceb2a579400f020b61c67ca7bbeb78
Fixed
861b4f9fde0128609abcb4eafce6192fbf0a959a

Affected versions

ldb-2.*
ldb-2.5.1
ldb-2.5.2
samba-4.*
samba-4.16.0
samba-4.16.1
samba-4.16.2
samba-4.16.3
samba-4.16.4
samba-4.16.5
samba-4.16.6
samba-4.16.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-45141.json"