---

CVE-2025-0620 - log back

CVE-2025-0620 edited at 06 Jun 2025 20:32:42
References	https://www.samba.org/samba/security/CVE-2025-0620.html https://bugzilla.samba.org/show_bug.cgi?id=15707 + https://nvd.nist.gov/vuln/detail/CVE-2025-0620

CVE-2025-0620 edited at 06 Jun 2025 20:29:57
Type	- Insufficient validation + Access restriction bypass

CVE-2025-0620 created at 03 Jun 2025 22:02:42
Severity	+ Low
Remote	+ Remote
Type	+ Insufficient validation
Description	+ When using Kerberos authentication with SMB, smbd doesn't pick up group membership changes when re-authenticating an expired SMB session.
References	+ https://www.samba.org/samba/security/CVE-2025-0620.html + https://bugzilla.samba.org/show_bug.cgi?id=15707
Notes