Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-sdjf-rkjd-sudg
Vulnerability ID VCID-sdjf-rkjd-sudg
Aliases CVE-2015-8467
Summary The samldb_check_user_account_control_acl function in dsdb/samdb/ldb_modules/samldb.c in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not properly check for administrative privileges during creation of machine accounts, which allows remote authenticated users to bypass intended access restrictions by leveraging the existence of a domain with both a Samba DC and a Windows DC, a similar issue to CVE-2015-2535.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.01714 https://api.first.org/data/v1/epss?cve=CVE-2015-8467
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8467.json
https://api.first.org/data/v1/epss?cve=CVE-2015-8467
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3223
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5252
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5296
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5299
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5330
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8467
1290294 https://bugzilla.redhat.com/show_bug.cgi?id=1290294
GLSA-201612-47 https://security.gentoo.org/glsa/201612-47
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.82702
EPSS Score 0.01714
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:10:39.193213+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0