Search for vulnerabilities
Vulnerability details: VCID-kcqy-ghce-aaaq
Vulnerability ID VCID-kcqy-ghce-aaaq
Aliases CVE-2016-2114
Summary The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-254 7PK - Security Features
CWE-300 Channel Accessible by Non-Endpoint
System Score Found at
generic_textual Medium http://badlock.org/
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-2114.html
rhas Critical https://access.redhat.com/errata/RHSA-2016:0612
rhas Critical https://access.redhat.com/errata/RHSA-2016:0614
rhas Critical https://access.redhat.com/errata/RHSA-2016:0618
rhas Critical https://access.redhat.com/errata/RHSA-2016:0620
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.00264 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.08894 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.09568 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.11489 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
epss 0.17061 https://api.first.org/data/v1/epss?cve=CVE-2016-2114
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1312082
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2113
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2114
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
cvssv2 5.8 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2016-2114
cvssv3 5.9 https://nvd.nist.gov/vuln/detail/CVE-2016-2114
generic_textual Medium https://ubuntu.com/security/notices/USN-2950-1
generic_textual Medium https://www.samba.org/samba/security/CVE-2016-2114.html
cvssv3.1 8.8 http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
generic_textual HIGH http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Reference id Reference type URL
http://badlock.org/
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-2114.html
http://rhn.redhat.com/errata/RHSA-2016-0612.html
http://rhn.redhat.com/errata/RHSA-2016-0614.html
http://rhn.redhat.com/errata/RHSA-2016-0618.html
http://rhn.redhat.com/errata/RHSA-2016-0620.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2114.json
https://api.first.org/data/v1/epss?cve=CVE-2016-2114
https://bto.bluecoat.com/security-advisory/sa122
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2113
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2114
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://security.gentoo.org/glsa/201612-47
https://ubuntu.com/security/notices/USN-2950-1
https://www.samba.org/samba/history/samba-4.2.10.html
https://www.samba.org/samba/latest_news.html#4.4.2
https://www.samba.org/samba/security/CVE-2016-2114.html
http://www.debian.org/security/2016/dsa-3548
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/86011
http://www.securitytracker.com/id/1035533
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.458012
http://www.ubuntu.com/usn/USN-2950-1
http://www.ubuntu.com/usn/USN-2950-2
http://www.ubuntu.com/usn/USN-2950-3
http://www.ubuntu.com/usn/USN-2950-4
http://www.ubuntu.com/usn/USN-2950-5
1312082 https://bugzilla.redhat.com/show_bug.cgi?id=1312082
cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.19:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.20:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.21:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.21:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.22:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.23:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.23:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.24:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.24:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.25:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.25:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.26:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.26:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.10:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.11:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.12:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.13:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.14:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.15:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.16:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.17:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.18:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.19:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.20:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.21:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.21:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.22:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.23:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.23:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.1.9:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.0:rc1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.0:rc2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.0:rc3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.0:rc3:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.0:rc4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.0:rc4:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.7:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.8:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.2.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.2.9:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.0:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.3.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.3.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:samba:samba:4.4.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
CVE-2016-2114 https://nvd.nist.gov/vuln/detail/CVE-2016-2114
RHSA-2016:0612 https://access.redhat.com/errata/RHSA-2016:0612
RHSA-2016:0614 https://access.redhat.com/errata/RHSA-2016:0614
RHSA-2016:0618 https://access.redhat.com/errata/RHSA-2016:0618
RHSA-2016:0620 https://access.redhat.com/errata/RHSA-2016:0620
USN-2950-1 https://usn.ubuntu.com/2950-1/
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2016-2114
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2016-2114
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.66566
EPSS Score 0.00264
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.