VDB
ALPINE-CVE-2019-14902
ALPINE-CVE-2019-14902
PUBLISHED
CVSS 5.400000095367432 MEDIUM
There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away on all domain controllers.
Risk Scores
CVSS 3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.10 | samba | 4.6.1-r2, 0, 4.6.4-r0 |
| Alpine:v3.21 | samba | 3.6.6-r0, 3.6.5-r0, 3.6.4-r1 |
| Alpine:v3.15 | samba | 3.4.5-r0, 0, 4.8.8-r0 |
| Alpine:v3.11 | samba | 3.2.11-r1, 3.2.11-r0, 0 |
| Alpine:v3.13 | samba | 3.2.10-r0, 3.2.11-r0, 3.2.11-r1 |
| Alpine:v3.19 | samba | 3.3.7-r1, 3.2.11-r1, 3.2.8-r1 |
| Alpine:v3.18 | samba | 4.2.1-r1, 0, 3.2.10-r0 |
| Alpine:v3.23 | samba | 4.7.1-r0, 4.7.0-r1, 4.7.0-r2 |
| Alpine:v3.24 | samba | 0 |
| Alpine:v3.20 | samba | 3.6.4-r0, 0, 3.2.10-r0 |
| Alpine:v3.22 | samba | 3.5.7-r0, 3.5.6-r2, 4.1.1-r0 |
| Alpine:v3.17 | samba | 3.6.12-r0, 0, 3.2.11-r0 |
| Alpine:v3.9 | samba | 0, 4.8.8-r0, 4.8.7-r0 |
| Alpine:v3.14 | samba | 4.7.0-r0, 0, 3.2.10-r0 |
| Alpine:v3.8 | samba | 3.2.11-r0, 3.2.11-r1, 3.2.8-r0 |
| Alpine:v3.16 | samba | 4.2.3-r1, 4.2.3-r0, 4.2.1-r1 |
| Alpine:v3.12 | samba | 4.5.3-r1, 4.2.7-r0, 3.6.10-r0 |
Timeline
- Jan 21, 2020 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 9, 2026 CVE Updated