Samba: smb2 packet signing is not enforced when "server signing = required" is set
CVE-2023-3347

5.9MEDIUM

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Vendor
CVE Published:
20 July 2023

What is CVE-2023-3347?

A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Controllers where SMB2 packet signing is mandatory. This flaw allows an attacker to perform attacks, such as a man-in-the-middle attack, by intercepting the network traffic and modifying the SMB2 messages between client and server, affecting the integrity of the data.

Affected Version(s)

Red Hat Enterprise Linux 8 0:4.17.5-3.el8_8

Red Hat Enterprise Linux 8 0:4.17.5-3.el8_8

Red Hat Enterprise Linux 9 0:4.17.5-103.el9_2

References

https://access.redhat.com/errata/RHSA-2023:4325
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:4328
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-3347
vdb-entryx_refsource_REDHAT

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.