DCE/RPC Fragmentation Flaw in Samba Network File Sharing
CVE-2021-23192

7.5HIGH

Key Information:

Vendor: Samba
Status: Samba
Vendor: CVE Published:; 2 March 2022

What is CVE-2021-23192?

A security flaw exists in Samba's handling of DCE/RPC requests where an attacker can exploit large fragmented requests. If a client sends a massive DCE/RPC request and opts for fragmentation, it is possible for the attacker to modify the later fragments, thereby evading the signature verification process. This vulnerability poses a significant risk as it can potentially allow unauthorized access to sensitive information.

Affected Version(s)

samba Affects samba v4.10.0 to 4.15.1, Fixed in samba v4.15.2, v4.14.10 and v4.13.14.

References

https://bugzilla.redhat.com/show_bug.cgi?id=2019666

https://www.samba.org/samba/security/CVE-2021-23192.html

https://ubuntu.com/security/CVE-2021-23192

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2022
Vulnerability Reserved
Oct 20, 2021