CVE-2020-25722

CVE	CVE-2020-25722
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-02-18 18:15:00 UTC
Updated	2023-09-17 09:15:00 UTC
Description	Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.

Problem Types: CWE-863

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Canonical	Ubuntu Linux	18.04	All	All	All
Operating System	Canonical	Ubuntu Linux	20.04	All	All	All
Operating System	Canonical	Ubuntu Linux	21.04	All	All	All
Operating System	Canonical	Ubuntu Linux	21.10	All	All	All
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Debian	Debian Linux	9.0	All	All	All
Operating System	Fedoraproject	Fedora	33	All	All	All
Operating System	Fedoraproject	Fedora	34	All	All	All
Operating System	Fedoraproject	Fedora	35	All	All	All
Application	Samba	Samba	All	All	All	All

Reference	Source	Link	Tags
Samba: Multiple Vulnerabilities (GLSA 202309-06) — Gentoo security	GENTOO	security.gentoo.org
Samba - Security Announcement Archive	MISC	www.samba.org	Mitigation, Vendor Advisory
2019764 – (CVE-2020-25722) CVE-2020-25722 samba: Samba AD DC did not do sufficient access and conformance checking of data stored	MISC	bugzilla.redhat.com	Issue Tracking, Patch, Third Party Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

178884 Debian Security Update for samba (DSA 5003-1)
178919 Debian Security Update for samba (DSA 5015-1)
198583 Ubuntu Security Notification for Samba Vulnerability (USN-5142-1)
198596 Ubuntu Security Notification for Samba Vulnerabilities (USN-5174-1)
282091 Fedora Security Update for freeipa (FEDORA-2021-1d77047c61)
282156 Fedora Security Update for freeipa (FEDORA-2021-12af2614da)
296061 Oracle Solaris 11.4 Support Repository Update (SRU) 42.113.1 Missing (CPUJAN2022)
354310 Amazon Linux Security Advisory for samba : ALAS2022-2022-022
354496 Amazon Linux Security Advisory for samba : ALAS2022-2022-224
354550 Amazon Linux Security Advisory for samba : ALAS-2022-224
501490 Alpine Linux Security Update for samba
501779 Alpine Linux Security Update for samba
502027 Alpine Linux Security Update for samba
504394 Alpine Linux Security Update for samba
671280 EulerOS Security Update for samba (EulerOS-SA-2022-1246)
671315 EulerOS Security Update for samba (EulerOS-SA-2022-1258)
671372 EulerOS Security Update for samba (EulerOS-SA-2022-1295)
671384 EulerOS Security Update for samba (EulerOS-SA-2022-1311)
690244 Free Berkeley Software Distribution (FreeBSD) Security Update for samba (646923b0-41c7-11ec-a3b2-005056a311d1)
710751 Gentoo Linux Samba Multiple Vulnerabilities (GLSA 202309-06)
751345 OpenSUSE Security Update for samba and ldb (openSUSE-SU-2021:3647-1)
901806 Common Base Linux Mariner (CBL-Mariner) Security Update for samba (8651)