DEBIAN-CVE-2018-10919

DEBIAN-CVE-2018-10919 PUBLISHED CVSS 6.5 MEDIUM

The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Samba versions before 4.6.16, 4.7.9 and 4.8.4 are vulnerable.

Risk Scores

CVSS 3.0

6.5

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Debian:13	samba	0, 0, 0
Debian:11	samba	0, 0, 0
Debian:12	samba	0, 0, 0
Debian:14	samba	0, 0, 0

Timeline

Aug 22, 2018 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2018-10919 advisory

Open in Interactive Console →