CVE-2020-25722
8.8
HIGH
CVSS 3.1
EPSS 0.41%
Description
Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.
How to fix CVE-2020-25722
To remediate CVE-2020-25722, upgrade the affected package to a fixed version below.
- Alpine/samba—upgrade to 4.13.17-r0 or later
- Debian/samba—upgrade to 2:4.13.13+dfsg-1~deb11u2 or later
Is CVE-2020-25722 being exploited?
Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 4.13.17-r0
- from 0, < 2:4.13.13+dfsg-1~deb11u2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |