CVE-2018-14628

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2018-14628

CGA ID

CGA-4r4x-rr4g-jr39

Severity

Unknown

Description

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store.

References

https://images.chainguard.dev/security/CGA-4r4x-rr4g-jr39
https://github.com/advisories/GHSA-88v2-p2r7-rvpx
https://bugzilla.samba.org/show_bug.cgi?id=13595
https://security.netapp.com/advisory/ntap-20230223-0008/
http://www.openwall.com/lists/oss-security/2023/11/28/4
https://bugzilla.redhat.com/show_bug.cgi?id=1625445
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6DK57HQRTCDOZDIIICYWQ4Z5IQXTWVVW/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ACVMYEP5KJRL3FWSCZW2MQZ26IVPXY62/
https://security.alpinelinux.org/vuln/CVE-2018-14628
https://security-tracker.debian.org/tracker/CVE-2018-14628

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2018-14628

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources