[Samba] Severity of unpublished CVE-2017-2619 and CVE-2017-7494

Andrew Bartlett abartlet at samba.org
Fri May 26 08:24:27 UTC 2017


On Fri, 2017-05-26 at 13:47 +0530, Arjit Gupta wrote:
> 
> Thanks for the analysis of second bug.
> Please also share CVSSv3 score for first bug.

My assessment is:

https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/P
R:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

2.8

Andrew Bartlett
-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba




More information about the samba mailing list