Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-4pjr-6tfv-hqgu
Vulnerability ID VCID-4pjr-6tfv-hqgu
Aliases CVE-2015-7540
Summary The LDAP server in the AD domain controller in Samba 4.x before 4.1.22 does not check return values to ensure successful ASN.1 memory allocation, which allows remote attackers to cause a denial of service (memory consumption and daemon crash) via crafted packets.
Status Published
Exploitability 0.5
Weighted Severity 0.4
Risk 0.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-770 Allocation of Resources Without Limits or Throttling
System Score Found at
epss 0.39597 https://api.first.org/data/v1/epss?cve=CVE-2015-7540
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7540.json
https://api.first.org/data/v1/epss?cve=CVE-2015-7540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3223
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5252
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5296
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5299
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5330
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8467
1288451 https://bugzilla.redhat.com/show_bug.cgi?id=1288451
GLSA-201612-47 https://security.gentoo.org/glsa/201612-47
RHSA-2016:0010 https://access.redhat.com/errata/RHSA-2016:0010
RHSA-2016:0015 https://access.redhat.com/errata/RHSA-2016:0015
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.97384
EPSS Score 0.39597
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:10:39.103566+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0