NVD Vulnerability Detail

CVE-2022-0336

Summary	The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as one added when a computer is joined to a domain. An attacker who has the ability to write to an account can exploit this to perform a denial-of-service attack by adding an SPN that matches an existing service. Additionally, an attacker who can intercept traffic can impersonate existing services, resulting in a loss of confidentiality and integrity.
Publication Date	Aug. 30, 2022, 12:15 a.m.
Registration Date	Aug. 30, 2022, 10 a.m.
Last Update	Nov. 21, 2024, 3:38 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://access.redhat.com/security/cve/CVE-2022-0336	Issue Tracking Third Party Advisory
2	https://access.redhat.com/security/cve/CVE-2022-0336	Issue Tracking Third Party Advisory
3	https://bugzilla.redhat.com/show_bug.cgi?id=2046134	Issue Tracking Third Party Advisory
4	https://bugzilla.redhat.com/show_bug.cgi?id=2046134	Issue Tracking Third Party Advisory
5	https://bugzilla.samba.org/show_bug.cgi?id=14950	Issue Tracking Patch Vendor Advisory
6	https://bugzilla.samba.org/show_bug.cgi?id=14950	Issue Tracking Patch Vendor Advisory
7	https://github.com/samba-team/samba/commit/1a5dc817c0c9379bbaab14c676681b42b0039a3c	Patch Third Party Advisory
8	https://github.com/samba-team/samba/commit/1a5dc817c0c9379bbaab14c676681b42b0039a3c	Patch Third Party Advisory
9	https://github.com/samba-team/samba/commit/c58ede44f382bd0125f761f0479c8d48156be400	Patch Third Party Advisory
10	https://github.com/samba-team/samba/commit/c58ede44f382bd0125f761f0479c8d48156be400	Patch Third Party Advisory
11	https://security.gentoo.org/glsa/202309-06
12	https://security.gentoo.org/glsa/202309-06
13	https://www.samba.org/samba/security/CVE-2022-0336.html	Vendor Advisory
14	https://www.samba.org/samba/security/CVE-2022-0336.html	Vendor Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-276	不適切なデフォルトパーミッション	https://cwe.mitre.org/data/definitions/276.html

JVN Vulnerability Information

Samba Project の Samba 他複数ベンダの製品における不適切なデフォルトパーミッションに関する脆弱性

Title	Samba Project の Samba 他複数ベンダの製品における不適切なデフォルトパーミッションに関する脆弱性
Summary	Samba Project の Samba 他複数ベンダの製品には、不適切なデフォルトパーミッションに関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダアドバイザリまたはパッチ情報が公開されています。参考情報を参照して適切な対策を実施してください。
Publication Date	Aug. 29, 2022, midnight
Registration Date	Sept. 29, 2023, 5:08 p.m.
Last Update	Sept. 29, 2023, 5:08 p.m.

Affected System

Samba Project

Samba 4.0.0 以上 4.13.17 未満

Samba 4.14.0 以上 4.14.12 未満

Samba 4.15.0 以上 4.15.4 未満

Fedora Project

Fedora 34

Fedora 35

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2022-0336	https://www.cve.org/CVERecord?id=CVE-2022-0336
National Vulnerability Database (NVD)
2	CVE-2022-0336	https://nvd.nist.gov/vuln/detail/CVE-2022-0336

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-276	https://cwe.mitre.org/data/definitions/276.html

その他

No	Name	URL
関連文書
1	access.redhat.com (CVE-2022-0336)	https://access.redhat.com/security/cve/CVE-2022-0336
2	bugzilla.redhat.com (2046134)	https://bugzilla.redhat.com/show_bug.cgi?id=2046134
3	bugzilla.samba.org (14950)	https://bugzilla.samba.org/show_bug.cgi?id=14950
4	github.com (1a5dc817c0c9379bbaab14c676681b42b0039a3c)	https://github.com/samba-team/samba/commit/1a5dc817c0c9379bbaab14c676681b42b0039a3c
5	github.com (c58ede44f382bd0125f761f0479c8d48156be400)	https://github.com/samba-team/samba/commit/c58ede44f382bd0125f761f0479c8d48156be400
6	security.gentoo.org (202309-06)	https://security.gentoo.org/glsa/202309-06
7	www.samba.org (CVE-2022-0336)	https://www.samba.org/samba/security/CVE-2022-0336.html

Change Log

No	Changed Details	Date of change
1	[2023年09月29日] 掲載	Sept. 29, 2023, 5:08 p.m.