CVE Catalog

CVE-2025-0620

MediumCVSS 4.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.60%

44th percentile - higher than 44% of all known CVEs

Summary

A flaw in Samba causes the smbd daemon to ignore group membership changes when re-authenticating an expired SMB session. This can expose file shares until clients disconnect and reconnect.

Risk Assessment

The organization risks unauthorized access to file shares as users may retain permissions after group membership changes.

Recommendation

Update Samba to a patched version and enforce client reconnection after group changes.

Original NVD description (English source)

A flaw was found in Samba. The smbd service daemon does not pick up group membership changes when re-authenticating an expired SMB session. This issue can expose file shares until clients disconnect and then connect again.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS