← back
CVE-2022-32746

CVE-2022-32746

EPSS 1.1%CWE-416
A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl.
Affected products
n/a · samba

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.gentoo.org/glsa/202309-06https://www.samba.org/samba/security/CVE-2022-32746.html