CVE-2023-0614 - AskarLabs CVE Database

CVE-2023-0614

Vendor N/A

Product Samba

Weakness CWE-200 · Info exposure

Published April 3, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC.

Key dates

02Disclosure timeline

April 3, 2023 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0614

Related vulnerabilities

04Related CVE

CVE-2024-38761 WordPress Zephyr Project Manager plugin <= 3.3.99 - Sensitive Data Exposure via Export File vulnerability CVE-2018-0187 Cisco Identity Services Engine Privileged Account Sensitive Information Disclosure Vulnerability CVE-2023-40510 LG Simple Editor getServerSetting Authentication Bypass Vulnerability CVE-2026-42092 Global Settings Publication Exposes Sensitive Configuration to Any Authenticated User in Titra CVE-2023-6615 Typecho manage-users.php information disclosure