CVE-2026-3012

Published: Mag 27, 2026 Last Modified: Mag 27, 2026
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 8,0
Source: [email protected]
Attack Vector: adjacent_network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: changed
Confidentiality: high
Integrity: high
Availability: none

Description

AI Translation Available

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect network traffic could exploit this behavior to supply a malicious certificate authority certificate, potentially allowing interception or spoofing of trusted communications.

https://access.redhat.com/security/cve/CVE-2026-3012
https://access.redhat.com/security/cve/CVE-2026-3012
https://bugzilla.redhat.com/show_bug.cgi?id=2447319
https://bugzilla.redhat.com/show_bug.cgi?id=2447319
https://bugzilla.samba.org/show_bug.cgi?id=16003
https://bugzilla.samba.org/show_bug.cgi?id=16003