CVE-2022-32744
First published: Thu Aug 25 2022(Updated: )
A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samba Samba | >=4.3.0<4.14.14 | |
| Samba Samba | >=4.15.0<4.15.9 | |
| Samba Samba | >=4.16.0<4.16.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-32744?
CVE-2022-32744 is a vulnerability in Samba that allows an attacker to change other users' passwords and potentially take over the entire domain.
How does CVE-2022-32744 work?
CVE-2022-32744 allows an attacker to encrypt forged kpasswd requests with its own key, tricking the KDC into accepting the requests and changing other users' passwords.
What is the severity of CVE-2022-32744?
CVE-2022-32744 has a severity score of 8.8 (high).
Which versions of Samba are affected by CVE-2022-32744?
Samba versions 4.3.0 to 4.14.14, 4.15.0 to 4.15.9, and 4.16.0 to 4.16.4 are affected by CVE-2022-32744.
How can I fix CVE-2022-32744?
To fix CVE-2022-32744, it is recommended to upgrade Samba to a patched version provided by the vendor.
- collector/nvd-api
- collector/nvd-index
- agent/type
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/event
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/samba
- canonical/samba samba
- version/samba samba/4.3.0
- version/samba samba/4.15.0
- version/samba samba/4.16.0