Wind River Support Network

HomeDefectsLIN1021-4057
Acknowledged

LIN1021-4057 : Security Advisory - samba - CVE-2022-32744

Created: Jul 28, 2022    Updated: Jan 3, 2024
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change the passwords of other users, enabling full domain takeover.

CREATE(Triage):(User=admin) CVE-2022-32744 (https://nvd.nist.gov/vuln/detail/CVE-2022-32744)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube