Samba: heap buffer overflow with freshness tokens in the heimdal kdc
CVE-2023-5568

5.9MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9
Vendor: CVE Published:; 25 October 2023

What is CVE-2023-5568?

A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated attacker to exploit this vulnerability to cause a denial of service.

References

https://access.redhat.com/security/cve/CVE-2023-5568

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2245174

issue-trackingx_refsource_REDHAT

https://bugzilla.samba.org/show_bug.cgi?id=15491

EPSS Score

7% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 25, 2023
Vulnerability Reserved
Oct 13, 2023

Red Hat

What is CVE-2023-5568?

References

EPSS Score

CVSS V3.1

Timeline