Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Samba Number Of NVD 208 CRITICAL 6 HIGH 78 MEDIUM 106 LOW 18
URL https://www.samba.org/
Explanation Samba is the standard Windows interoperability suite of programs for Linux and Unix.

Samba is Free Software licensed under the GNU General Public License, the Samba project is a member of the Software Freedom Conservancy.

Since 1992, Samba has provided secure, stable and fast file and print services for all clients using the SMB/CIFS protocol, such as all versions of DOS and Windows, OS/2, Linux and many others.

Samba is an important component to seamlessly integrate Linux/Unix Servers and Desktops into Active Directory environments. It can function both as a domain controller or as a regular domain member.

Excerpted and translated from [https://www.samba.org/
Tag
  • GPL v3
  • オープンソース
Add Information URL
No Type Name URL
1 https://www.samba.org/samba/history/
2 https://wiki.samba.org/index.php/Samba_Release_Planning
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
201 Samba 4.19 4.19.9 Oct. 17, 2024 Sept. 4, 2023 1 0 5 0
202 Samba 4.18 4.18.11 March 13, 2024 March 8, 2023 1 1 12 0
203 Samba 4.17 4.17.12 Oct. 10, 2023 Sept. 13, 2022 2 5 15 0
204 Samba 4.16 4.16.11 July 19, 2023 March 21, 2022 3 8 14 0
205 Samba 4.15 4.15.13 Dec. 15, 2022 Sept. 20, 2021 3 14 16 0
206 Samba 4.14 4.14.14 July 27, 2022 March 9, 2021 2 16 19 0
207 Samba 4.13 4.13.17 Jan. 31, 2022 Sept. 22, 2020 2 16 22 1
208 Samba 4.12 4.12.15 April 29, 2021 March 3, 2020 2 17 26 1
209 Samba 4.11 4.11.17 Dec. 3, 2020 Sept. 17, 2019 3 17 33 1
210 Samba 4.10 4.10.18 Sept. 18, 2019 March 19, 2019 3 18 38 1
211 Samba 4.9 4.9.18 Jan. 21, 2020 Sept. 13, 2018 Jan. 1, 2000 3 16 43 1
212 Samba 4.8 4.8.12 May 14, 2019 March 13, 2018 Jan. 1, 2000 2 18 40 1
213 Samba 4.7 4.7.12 Nov. 27, 2018 Sept. 20, 2017 Jan. 1, 2000 3 19 40 1
214 Samba 4.5 4.5.16 March 13, 2018 Sept. 7, 2016 Jan. 1, 2000 4 24 41 1
215 Samba 4.3 4.3.13 Dec. 19, 2016 Sept. 8, 2015 Jan. 1, 2000 4 30 49 1
216 Samba 4.2 4.22.1 April 17, 2025 March 4, 2015 Jan. 1, 2000 4 31 47 1
217 Samba 4.1 4.19.9 Oct. 17, 2024 Jan. 11, 2013 Jan. 1, 2000 5 34 52 6
218 Samba 4.0 4.0.26 May 6, 2015 Dec. 11, 2012 Jan. 1, 2000 4 34 53 7
219 Samba 3.6 3.6.25 Feb. 23, 2015 Aug. 9, 2011 Jan. 1, 2000 3 16 37 5
220 Samba 3.5 3.5.22 Aug. 5, 2013 March 1, 2010 Jan. 1, 2000 3 16 34 6
221 Samba 3.4 3.4.17 April 30, 2012 July 3, 2009 Jan. 1, 2000 2 15 37 8
222 Samba 3.3 3.3.16 July 26, 2011 Jan. 27, 2009 Jan. 1, 2000 2 16 35 8
223 Samba 3.2 3.2.15 Oct. 1, 2009 July 1, 2008 Jan. 1, 2000 2 17 37 7
224 Samba 3.0 3.0.37 Oct. 1, 2009 Sept. 24, 2003 Jan. 1, 2000 2 30 42 7
225 Samba 4.6 4.6.9 Aug. 14, 2018 Jan. 1, 2000 4 23 38 1
226 Samba 4.4 4.4.9 Sept. 20, 2017 Jan. 1, 2000 4 27 46 1
227 Samba 3.1 3.1.0 Jan. 1, 2000 2 15 24 5
228 Samba 2.2a 2.2a Jan. 1, 2000 2 12 18 4
229 Samba 2.2 2.2.12 Sept. 29, 2004 Jan. 1, 2000 2 20 20 5
230 Samba 2.18 2.18.3 Jan. 1, 2000 2 12 17 4
231 Samba 2.0 2.0.9 Jan. 1, 2000 2 23 22 7
232 Samba 1.9 1.9.18 Jan. 7, 1998 Jan. 1, 2000 2 13 20 5
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
201 -
7.5 		HIGH Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force passwo… NVD-CWE-Other
CVE-2000-0937 cpe:2.3:a:samba:samba:2.0.7:* 2017-10-10 10:29
2000-12-19 		Show GitHub Exploit DB Packet Storm
202 -
5.0 		MEDIUM Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users … NVD-CWE-Other
CVE-2000-0938 cpe:2.3:a:samba:samba:2.0.7:* 2017-10-10 10:29
2000-12-19 		Show GitHub Exploit DB Packet Storm
203 -
5.0 		MEDIUM Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. NVD-CWE-Other
CVE-2000-0939 cpe:2.3:a:samba:samba:2.0.7:* 2017-12-19 11:29
2000-12-19 		Show GitHub Exploit DB Packet Storm
204 -
7.6 		HIGH Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations. NVD-CWE-Other
CVE-1999-0812 cpe:2.3:a:samba:samba:2.0.5:* 2022-08-17 17:15
2000-07-12 		Show GitHub Exploit DB Packet Storm
205 -
5.0 		MEDIUM Buffer overflow in Samba smbd program via a malformed message command. NVD-CWE-Other
CVE-1999-0811 cpe:2.3:a:samba:samba:2.0.4:* 2008-09-9 21:35
1999-07-21 		Show GitHub Exploit DB Packet Storm
206 -
10.0 		HIGH Denial of service in Samba NETBIOS name service daemon (nmbd). NVD-CWE-Other
CVE-1999-0810 cpe:2.3:a:samba:samba:2.0.5:* 2022-08-17 17:15
1999-07-21 		Show GitHub Exploit DB Packet Storm
207 -
4.6 		MEDIUM Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and pos… NVD-CWE-Other
CVE-1999-1288 cpe:2.3:a:samba:samba:1.9.18:* 2017-10-10 10:29
1998-11-19 		Show GitHub Exploit DB Packet Storm
208 -
10.0 		HIGH Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. NVD-CWE-Other
CVE-1999-0182 cpe:2.3:a:samba:samba:*:p2 1.9.17 2008-09-9 21:33
1997-09-30 		Show GitHub Exploit DB Packet Storm