CVE-2022-2031 - log back

CVE-2022-2031 edited at 28 Jul 2022 09:42:57
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Access restriction bypass
Description
+ Samba AD users can bypass certain restrictions associated with changing passwords.
References
+ https://www.samba.org/samba/security/CVE-2022-2031.html
Notes
+ kpasswd is not a critical protocol for the AD DC in most installations, it can be disabled by setting "kpasswd port = 0" in the smb.conf.
CVE-2022-2031 created at 28 Jul 2022 06:59:34