canonical ubuntu-linux CVE-2020-25719 vulnerability in Canonical and Other Products
Published on February 18, 2022

product logo product logo product logo product logo product logo
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise.

Vendor Advisory NVD

Weakness Type

What is an authentification Vulnerability?

When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

CVE-2020-25719 has been classified to as an authentification vulnerability or weakness.


Products Associated with CVE-2020-25719

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-25719 are published in these products:

Canonical Ubuntu Linux
 
Samba
 
Debian Linux
 
Fedora Project Fedora
 
Red Hat Enterprise Linux (RHEL)
 
Red Hat Enterprise Linux Desktop
 
Red Hat Enterprise Linux Eus
 
Red Hat Enterprise Linux Ibm Z Systems
 
Red Hat Enterprise Linux Ibm Z Systems Eus
 
Red Hat Enterprise Linux Power Big Endian
 
Red Hat Enterprise Linux Power Little Endian
 
Red Hat Enterprise Linux Power Little Endian Eus
 
Red Hat Enterprise Linux Scientific Computing
 
Red Hat Enterprise Linux Server Aus
 
Red Hat Enterprise Linux Server Tus
 
Red Hat Enterprise Linux Server Update Services Sap Solutions
 
Red Hat Enterprise Linux Workstation
 

Exploit Probability

EPSS
0.20%
Percentile
42.00%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.