CVE-2025-10230
AI description
CVE-2025-10230 is a command injection vulnerability found in Samba's WINS server hook script. The vulnerability exists when Samba is running as an Active Directory Domain Controller with WINS support enabled and the 'wins hook' parameter is configured in the smb.conf file. This flaw allows unauthenticated attackers to execute arbitrary commands on affected domain controllers. The vulnerability occurs because the WINS server does not properly validate NetBIOS names passed to the wins hook program, passing them directly into a string run by a shell. By sending a specially crafted NetBIOS name containing shell metacharacters, a malicious client can inject commands that will be executed on the server with system-level privileges.
- Description
- -
- Hype score
- Not currently trending
🚨Upozorňujeme na kritickou zranitelnost v Samba, CVE-2025-10230. Zranitelnost umožňuje spouštět libovolné příkazy na hostiteli. Pokud má server Samba povolenou podporu WINS (ve výchozím nastavení je vypnutá) a je v něm zadán parametr „wins hook“, bude progra
@GOVCERT_CZ
17 Oct 2025
473 Impressions
3 Retweets
2 Likes
1 Bookmark
0 Replies
0 Quotes
⚠️⚠️ CVE-2025-10230(CVSS 10.0): Command Injection and RCE in Samba Samba AD DC with wins support=yes and a wins hook allows remote, unauthenticated command execution via malicious NetBIOS names. 🎯2.3m+ Results are found on the https://t.co/pb16tGYaKe nearly year. 🔗F
@fofabot
17 Oct 2025
2490 Impressions
11 Retweets
48 Likes
30 Bookmarks
0 Replies
0 Quotes
🚨Alert🚨:CVE-2025-10230 (CVSS 10.0) : Critical Samba RCE Flaw Allows Unauthenticated Command Injection on AD DCs 📊5.5K+ Services are found on the https://t.co/ysWb28BTvF yearly. 🔗Hunter Link:https://t.co/XY0uzhmP0v 👇Query HUNTER : https://t.co/q9rtuGfZuz="Sambar Ser
@HunterMapping
17 Oct 2025
3541 Impressions
26 Retweets
71 Likes
34 Bookmarks
0 Replies
0 Quotes
Samba critical CVE-2025-10230: Command injection via WINS server hook script https://t.co/h0Bgdki3Z9
@Dinosn
16 Oct 2025
1683 Impressions
1 Retweet
3 Likes
4 Bookmarks
0 Replies
0 Quotes
🚨🚨CVE-2025-10230 (CVSS 10): Critical Samba RCE Flaw Unauthenticated RCE in Samba AD DCs: improper input sanitization in the WINS server lets attackers inject commands via "wins hook". ZoomEye Dork👉banner="Samba" Over 265.8k vulnerable instances. ZoomEye Link: https://t.
@zoomeye_team
16 Oct 2025
13864 Impressions
58 Retweets
187 Likes
92 Bookmarks
3 Replies
1 Quote
📝 𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐒𝐚𝐦𝐛𝐚 𝐑𝐂𝐄 𝐅𝐥𝐚𝐰 𝐂𝐕𝐄-𝟐𝟎𝟐𝟓-𝟏𝟎𝟐𝟑𝟎 𝐀𝐥𝐥𝐨𝐰𝐬 𝐔𝐧𝐚𝐮𝐭𝐡𝐞𝐧𝐭𝐢𝐜𝐚𝐭𝐞𝐝 𝐂𝐨𝐦𝐦𝐚𝐧𝐝 𝐈𝐧𝐣𝐞𝐜𝐭
@PurpleOps_io
16 Oct 2025
87 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
csirt_it: #Samba #RCE: aggiornamenti di sicurezza sanano 2 vulnerabilità, di cui una con gravità “critica” - CVE-2025-10230 - nel meccanismo wins hook Rischio: 🟠 Tipologia: 🔸 Remote Code Execution 🔗https://t.co/P3RAeYrhJl 🔄 Aggiornamenti disponib… https://
@Vulcanux_
16 Oct 2025
62 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 BREAKING: Severe Samba RCE vulnerability CVE-2025-10230 threatens global Active Directory Domain Controllers. Urgent action required to mitigate risks. https://t.co/teprTrBkVN #CyberSecurity #OSINT
@OSINTMCP
16 Oct 2025
30 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
SambaにCVSSスコア10の脆弱性。CVE-2025-10230はAD DCでWINSサーバが有効で、wins hookの設定が有効な場合にコマンドインジェクションが成立。修正版あり。 https://t.co/h6mM3xh8uZ
@__kokumoto
16 Oct 2025
2837 Impressions
20 Retweets
28 Likes
12 Bookmarks
0 Replies
2 Quotes
you might be like, wtf runs wins enabled samba in '25 - the real question you should be asking is wtf do you run a multi-process, multi-user (unauth'd) system that allows 10.0 cmd injection in '25 - run nanos unikernels - CVE-2025-10230 https://t.co/gxbvbjtxrg
@nanovms
16 Oct 2025
810 Impressions
0 Retweets
8 Likes
1 Bookmark
0 Replies
0 Quotes