What is CVE-2026-3238?

CVE-2026-3238 is a high-severity vulnerability, classified under NULL Pointer Dereference. CVSS score: 7.5/10. Published 2026-06-08.

How severe is CVE-2026-3238?

High severity. CVSS v3 base score is 7.5 out of 10.

CVE-2026-3238

CVE-2026-3238

A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote at…

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Weakness classification (CWE)

CWE-476 — NULL Pointer Dereference

References

secalert@redhat.com
secalert@redhat.com
secalert@redhat.com

Frequently asked questions

What is CVE-2026-3238?: CVE-2026-3238 is a high-severity vulnerability, classified under NULL Pointer Dereference. CVSS score: 7.5/10. Published 2026-06-08.
How severe is CVE-2026-3238?: High severity. CVSS v3 base score is 7.5 out of 10.