A flaw was found in Samba’s certificate auto-enrollment Group Policy handling
Samba's certificate auto-enrollment Group Policy handling has a flaw that allows an attacker to intercept or redirect network traffic and supply a malicious certificate authority certificate. This can potentially allow interception or spoofing of trusted communications. The vulnerability occurs when certificate auto-enrollment is enabled and Samba retrieves a CA certificate over an unencrypted HTTP connection.
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect network traffic could exploit this behavior to supply a malicious certificate authority certificate, potentially allowing interception or spoofing of trusted communications.
Samba users with certificate auto-enrollment enabled are at high risk of having their trusted communications intercepted or spoofed by attackers who can intercept or redirect network traffic.
Remediation Recommended
This vulnerability carries significant risk. Schedule patching in your next cycle.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
0
Affected Products
3
References
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Exploitability
Impact