CVE Catalog
CVE-2025-0620
MediumCVSS 4.9Exploitation Probability (EPSS)
Low risk0.60%
44th percentile - higher than 44% of all known CVEs
Summary
A flaw in Samba causes the smbd daemon to ignore group membership changes when re-authenticating an expired SMB session. This can expose file shares until clients disconnect and reconnect.
Risk Assessment
The organization risks unauthorized access to file shares as users may retain permissions after group membership changes.
Recommendation
Update Samba to a patched version and enforce client reconnection after group changes.
Original NVD description (English source)
A flaw was found in Samba. The smbd service daemon does not pick up group membership changes when re-authenticating an expired SMB session. This issue can expose file shares until clients disconnect and then connect again.

