CVE-2022-2127

Name: CVE-2022-2127
Creator: NVD / NIST
Published: 2023-07-20T15:15:11.183+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.9/10EPSS 1.53%

Last modified Jun 17, 2026

CVE-2022-2127 is a medium-severity vulnerability rated 5.9/10 on the CVSS scale. An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. EPSS estimates a 1.53% chance of exploitation in the next 30 days.

Description

An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manager response length. When Winbind is used for NTLM authentication, a maliciously crafted request can trigger an out-of-bounds read in Winbind, possibly resulting in a crash.

Metrics

CVSS 3.1

5.9/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

1.53%

71.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Samba	Samba	>= 4.16.0, < 4.16.10
Samba	Samba	>= 4.17.0, < 4.17.9
Samba	Samba	>= 4.18.0, < 4.18.4
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux	7.0
Redhat	Enterprise Linux	8.0
Redhat	Enterprise Linux	9.0
Fedoraproject	Fedora	37
Fedoraproject	Fedora	38
Debian	Debian Linux	12.0

References

https://access.redhat.com/errata/RHSA-2023:6667Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:7139Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0423
https://access.redhat.com/errata/RHSA-2024:0580
https://access.redhat.com/security/cve/CVE-2022-2127Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2222791Issue Tracking, Third Party Advisory
https://www.samba.org/samba/security/CVE-2022-2127.htmlMitigation, Vendor Advisory
https://access.redhat.com/errata/RHSA-2023:6667Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:7139Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0423
https://access.redhat.com/errata/RHSA-2024:0580
https://access.redhat.com/security/cve/CVE-2022-2127Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2222791Issue Tracking, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00015.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPCSGND7LO467AJGR5DYBGZLTCGTOBCC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OT74M42E6C36W7PQVY3OS4ZM7DVYB64Z/
https://security.netapp.com/advisory/ntap-20230731-0010/
https://www.debian.org/security/2023/dsa-5477
https://www.samba.org/samba/security/CVE-2022-2127.htmlMitigation, Vendor Advisory

Timeline

Published: Jul 20, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-2127?

How severe is CVE-2022-2127?

CVE-2022-2127 has a CVSS score of 5.9/10 (MEDIUM severity). The EPSS model estimates a 1.53% probability of exploitation in the next 30 days.

How do I fix CVE-2022-2127?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-2127?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST