What is CVE-2023-4154?

CVE-2023-4154 is a high-severity vulnerability in Fedora, classified under Out-of-bounds Write. CVSS score: 7.5/10. Published 2023-11-07.

How severe is CVE-2023-4154?

High severity. CVSS v3 base score is 7.5 out of 10.

Buffer overflow in Fedora

CVE-2023-4154

A design flaw was found in Samba's DirSync control implementation, which exposes passwords and secrets in Active Directory to privileged users and Read-Only Domain Controllers (RODCs). This flaw allows RODCs and users possessing the GET_CH…

Vulnerability class: Buffer Overflow

EPSS: 0.004 (60.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Fedora
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Red Hat Storage 3
N/a Samba — versions 4.19.1, 4.18.8, 4.17.12

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

access.redhat.com/security/cve/CVE-2023-4154 (vdb-entry, x_refsource_REDHAT)
RHBZ#2241883 (issue-tracking, x_refsource_REDHAT)
bugzilla.samba.org/show_bug.cgi
security.netapp.com/advisory/ntap-20231124-0002/
www.samba.org/samba/security/CVE-2023-4154.html

Frequently asked questions

What is CVE-2023-4154?: CVE-2023-4154 is a high-severity vulnerability in Fedora, classified under Out-of-bounds Write. CVSS score: 7.5/10. Published 2023-11-07.
How severe is CVE-2023-4154?: High severity. CVSS v3 base score is 7.5 out of 10.