CVE-2026-3012

CVE Database · CVE-2026-3012

CVE-2026-3012

· HIGHModified

CVSS v3.1

8.0

EPSS

0.19%

Published

May 27, 2026

Modified

Jun 10, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect network traffic could exploit this behavior to supply a malicious certificate authority certificate, potentially allowing interception or spoofing of trusted communications.

CVSS Vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

Weaknesses (CWE)

CWE-345

Affected Products (4)

redhat · openshift_container_platformvulnerable

samba · samba (up to 4.21.0)vulnerable

redhat · enterprise_linuxvulnerable

References (6)

https://access.redhat.com/errata/RHSA-2026:22644

Issue Tracking

https://access.redhat.com/errata/RHSA-2026:22963