CVE-2022-32746
CVE-2022-32746
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Lifecycle
25 Aug 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl.
Affected products
n/a · sambaWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →