A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not possible with this issue.
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XQ3IUACPZJXSC4OM6P2V4IC4QMZQZWPD/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKPYHDFI7HRELVXBE5J4MTGSI35AKFBI/
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00015.html
https://www.synology.com/security/advisory/Synology_SA_19_35
https://www.samba.org/samba/security/CVE-2019-14847.html
https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html
https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14847
Source: Mitre, NVD
Published: 2019-11-06
Updated: 2023-11-07
Base Score: 4
Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P
Severity: Medium
Base Score: 4.9
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
EPSS: 0.02561