On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).
https://www.samba.org/samba/security/CVE-2018-1057.html
https://bugzilla.redhat.com/show_bug.cgi?id=1553553
https://www.debian.org/security/2018/dsa-4135
https://security.netapp.com/advisory/ntap-20180313-0001/
http://www.securitytracker.com/id/1040494
http://www.securityfocus.com/bid/103382
https://www.synology.com/support/security/Synology_SA_18_08
https://usn.ubuntu.com/3595-1/
https://security.gentoo.org/glsa/201805-07
https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html
Source: MITRE
Published: 2018-03-13
Updated: 2022-08-29
Type: CWE-863
Base Score: 6.5
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8
Severity: MEDIUM
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH