CVE-2022-0336

Name: CVE-2022-0336
Creator: NVD / NIST
Published: 2022-08-29T15:15:09.25+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 1.25%

Last modified Jun 17, 2026

CVE-2022-0336 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as one added when a computer is joined to a domain. EPSS estimates a 1.25% chance of exploitation in the next 30 days.

Description

The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as one added when a computer is joined to a domain. An attacker who has the ability to write to an account can exploit this to perform a denial-of-service attack by adding an SPN that matches an existing service. Additionally, an attacker who can intercept traffic can impersonate existing services, resulting in a loss of confidentiality and integrity.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.25%

65.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Samba	Samba	>= 4.0.0, < 4.13.17
Samba	Samba	>= 4.14.0, < 4.14.12
Samba	Samba	>= 4.15.0, < 4.15.4
Fedoraproject	Fedora	34
Fedoraproject	Fedora	35

References

https://access.redhat.com/security/cve/CVE-2022-0336Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2046134Issue Tracking, Third Party Advisory
https://bugzilla.samba.org/show_bug.cgi?id=14950Issue Tracking, Patch, Vendor Advisory
https://github.com/samba-team/samba/commit/1a5dc817c0c9379bbaab14c676681b42b0039a3cPatch, Third Party Advisory
https://github.com/samba-team/samba/commit/c58ede44f382bd0125f761f0479c8d48156be400Patch, Third Party Advisory
https://security.gentoo.org/glsa/202309-06
https://www.samba.org/samba/security/CVE-2022-0336.htmlVendor Advisory
https://access.redhat.com/security/cve/CVE-2022-0336Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2046134Issue Tracking, Third Party Advisory
https://bugzilla.samba.org/show_bug.cgi?id=14950Issue Tracking, Patch, Vendor Advisory
https://github.com/samba-team/samba/commit/1a5dc817c0c9379bbaab14c676681b42b0039a3cPatch, Third Party Advisory
https://github.com/samba-team/samba/commit/c58ede44f382bd0125f761f0479c8d48156be400Patch, Third Party Advisory
https://security.gentoo.org/glsa/202309-06
https://www.samba.org/samba/security/CVE-2022-0336.htmlVendor Advisory

Timeline

Published: Aug 29, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-0336?

How severe is CVE-2022-0336?

CVE-2022-0336 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 1.25% probability of exploitation in the next 30 days.

How do I fix CVE-2022-0336?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-0336?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST