Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2018-1140

A missing input sanitization flaw was found in the implementation of LDP database used for the LDAP server. An attacker could use this flaw to cause a denial of service against a samba server, used as a Active Directory Domain Controller. All versions of Samba from 4.8.0 onwards are vulnerable

Published: Aug 22, 2018
Updated: Nov 9, 2025
CVE: CVE-2018-1140
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.3
AV:A/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
samba / samba	4.8.0	4.8.4

http://www.securityfocus.com/bid/105082
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1140
https://bugzilla.samba.org/show_bug.cgi?id=13374
https://security.gentoo.org/glsa/202003-52
https://security.netapp.com/advisory/ntap-20180814-0001/
https://www.samba.org/samba/security/CVE-2018-1140.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo