Critical Samba vulnerabilities easily allow hacking of servers
Samba is a free software project that runs on operating systems that are similar to UNIX and supports the Windows file sharing protocol. Recently, several security flaws have been discovered in Samba, which could allow an attacker to gain access to sensitive data. These vulnerabilities include CVE-2023-0614, CVE-2018-10919, and CVE-2023-0922, and they all have the potential to result in unauthorized access to sensitive resources, posing a severe threat to the organization’s security. To protect against these vulnerabilities, organizations should avoid storing sensitive information in Active Directory, with the exception of passwords or keys that are essential for AD functioning. CVEs: CVE-2018-10919, CVE-2023-0922, CVE-2023-0614 [View Article](https://www.securitynewspaper.com/2023/03/30/critical-samba-vulnerabilities-easily-allow-hacking-of-servers/)