VDB
CVE-2019-14847
CVE-2019-14847
PUBLISHED
A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not possible with this issue.
EPSS 2.43% · 85.5th percentile
Risk Scores
EPSS Score
2.43%
85.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | samba | 2:4.6.7+dfsg-1ubuntu3, 2:4.7.1+dfsg-1ubuntu1, 2:4.7.3+dfsg-1ubuntu1 |
| Ubuntu:Pro:14.04:LTS | samba | *, 2:4.1.6+dfsg-1ubuntu2, 2:4.1.6+dfsg-1ubuntu2.14.04.1 |
| Ubuntu:16.04:LTS | samba | 2:4.1.17+dfsg-4ubuntu2, 2:4.1.20+dfsg-1ubuntu1, 2:4.1.20+dfsg-1ubuntu2 |
Exploit Intelligence
Timeline
- Oct 28, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 2, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-14847 third-party-advisory
- https://www.samba.org/samba/security/CVE-2019-14847.html third-party-advisory
- https://ubuntu.com/security/notices/USN-4167-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-4167-2 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-14847 third-party-advisory