Samba Vulnerability in smbd Service Daemon
CVE-2025-0620

4.9MEDIUM

Key Information:

Vendor

Samba

Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Vendor
CVE Published:
6 June 2025

What is CVE-2025-0620?

A flaw exists in the Samba application where the smbd service daemon fails to recognize changes in group membership during the re-authentication of expired SMB sessions. This can lead to potential exposure of file shares to unauthorized users until clients disconnect and reconnect. It is crucial for system administrators to ensure that access permissions are adequately enforced, especially in environments relying on Samba for file sharing.

References

https://access.redhat.com/security/cve/CVE-2025-0620
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2370453
issue-trackingx_refsource_REDHAT
https://www.samba.org/samba/security/CVE-2025-0620.html

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.