Vulnerability Name:

CVE-2021-23192 (CCN-213210)

Assigned:2021-11-09
Published:2021-11-09
Updated:2022-08-29
Summary:A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
4.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N)
4.2 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
4.8 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N)
4.2 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2021-23192

Source: CCN
Type: Red Hat Bugzilla - Bug 2019666
CVE-2021-23192 samba: Subsequent DCE/RPC fragment injection vulnerability

Source: MISC
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2019666

Source: XF
Type: UNKNOWN
samba-cve202123192-sec-bypass(213210)

Source: MISC
Type: Third Party Advisory
https://ubuntu.com/security/CVE-2021-23192

Source: CCN
Type: IBM Security Bulletin 6565039 (Spectrum Scale)
A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2021-23192)

Source: CCN
Type: IBM Security Bulletin 6596981 (Spectrum Protect Plus)
Vulnerabilities in Samba, OpenSSL, Python, and XStream affect IBM Spectrum Protect Plus (CVE-2021-20254, CVE-2021-3712, CVE-2021-43859, CVE-2022-0778, CVE-2020-25717, CVE-2021-23192, CVE-2021-3733)

Source: CCN
Type: Samba Web site
Samba

Source: MISC
Type: Patch, Vendor Advisory
https://www.samba.org/samba/security/CVE-2021-23192.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.15.0 and < 4.15.2)
  • OR cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.14.0 and < 4.14.10)
  • OR cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.10.0 and < 4.13.14)

    • Configuration RedHat 1:
  • cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:samba:samba:-:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:spectrum_protect_plus:10.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_scale:5.1.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:7682
    P
    		libtiff-devel-4.0.9-150000.45.25.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:7661
    P
    		libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:7663
    P
    		libseccomp-devel-2.5.3-150400.2.4 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:7662
    P
    		libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:807
    P
    		Security update for python3 (Important)
    2022-10-06
    oval:org.opensuse.security:def:3708
    P
    		Security update for git (Important)
    2022-07-26
    oval:org.opensuse.security:def:3072
    P
    		fuse-2.9.3-6.3.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:3524
    P
    		hyper-v-7-7.5 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:3071
    P
    		ft2demos-2.6.3-7.15.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94636
    P
    		libfreebl3-3.68.3-150400.1.7 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94701
    P
    		libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94702
    P
    		libsamba-policy-devel-4.15.5+git.328.f1f29505d84-150400.1.44 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:102147
    P
    		Security update for python-libxml2-python (Important)
    2022-03-10
    oval:org.opensuse.security:def:112126
    P
    		ctdb-4.15.2+git.193.a4d6307f1fd-1.1 on GA media (Moderate)
    2022-01-17
    oval:com.redhat.rhsa:def:20215082
    P
    		RHSA-2021:5082: samba security update (Important)
    2021-12-13
    oval:org.opensuse.security:def:111130
    P
    		Security update for samba (Important)
    2021-11-15
    oval:org.opensuse.security:def:73735
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:5886
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:99694
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:109321
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:96184
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:67313
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:118412
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:76382
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:101538
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:34587
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:102874
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:64613
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:4284
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:73919
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:1576
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:6224
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:100013
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:109540
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:101349
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:67314
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:118636
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:76532
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:42238
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:8374
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:102137
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:99159
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:108015
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:95434
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:64797
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:5148
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:76043
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:1740
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:6225
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:100349
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:19616
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:111781
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:68752
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:76551
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:8396
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:102298
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:99431
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:108813
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:95942
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:66975
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:117529
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:76381
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:100678
    P
    		 (Important)
    2021-11-10
    oval:org.opensuse.security:def:26161
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:102655
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:111782
    P
    		Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:68771
    P
    		Security update for samba and ldb (Important)
    2021-11-10
    oval:org.opensuse.security:def:60410
    P
    		Security update for samba (Important)
    2021-11-10
    BACK
    samba samba *
    samba samba *
    samba samba *
    samba samba -
    ibm spectrum protect plus 10.1.0
    ibm spectrum scale 5.1.0