Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-m364-w7f6-aug7
Vulnerability ID VCID-m364-w7f6-aug7
Aliases CVE-2015-5370
Summary Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not properly implement the DCE-RPC layer, which allows remote attackers to perform protocol-downgrade attacks, cause a denial of service (application crash or CPU consumption), or possibly execute arbitrary code on a client system via unspecified vectors.
Status Published
Exploitability 0.5
Weighted Severity 0.2
Risk 0.1
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.21108 https://api.first.org/data/v1/epss?cve=CVE-2015-5370
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5370.json
https://api.first.org/data/v1/epss?cve=CVE-2015-5370
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2113
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2114
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
1309987 https://bugzilla.redhat.com/show_bug.cgi?id=1309987
RHSA-2016:0611 https://access.redhat.com/errata/RHSA-2016:0611
RHSA-2016:0612 https://access.redhat.com/errata/RHSA-2016:0612
RHSA-2016:0613 https://access.redhat.com/errata/RHSA-2016:0613
RHSA-2016:0614 https://access.redhat.com/errata/RHSA-2016:0614
RHSA-2016:0618 https://access.redhat.com/errata/RHSA-2016:0618
RHSA-2016:0619 https://access.redhat.com/errata/RHSA-2016:0619
RHSA-2016:0620 https://access.redhat.com/errata/RHSA-2016:0620
RHSA-2016:0624 https://access.redhat.com/errata/RHSA-2016:0624
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.95764
EPSS Score 0.21108
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:10:39.059150+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0