CVE-2026-4480
Modified Modified - Updated After Analysis
Remote Code Execution in Samba Printing Subsystem

Publication date: 2026-05-26

Last updated on: 2026-06-10

Assigner: Red Hat, Inc.

Description
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by sending a specially crafted print job description that contains unescaped shell characters. This could lead to remote code execution on the affected system.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-26
Last Modified
2026-06-10
Generated
2026-06-15
AI Q&A
2026-05-26
EPSS Evaluated
2026-06-14
NVD
CVE-2026-4480
EUVD
EUVD-2026-31828
Affected Vendors & Products
Showing 6 associated CPEs
Vendor Product Version / Range
redhat enterprise_linux 7.0
redhat enterprise_linux 8.0
redhat openshift_container_platform 4.0
redhat enterprise_linux 9.0
redhat enterprise_linux 10.0
samba samba From 4.1.0 (inc) to 4.2.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided information does not specify how this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

CVE-2026-4480 is a vulnerability in the Samba printing subsystem where the job description string controlled by the client is passed to the print command without properly escaping shell meta characters. This flaw allows a remote attacker to send a specially crafted print job description containing unescaped shell characters, which can be exploited to execute arbitrary code on the affected system.

Impact Analysis

This vulnerability can lead to remote code execution on the affected system, allowing an attacker to run arbitrary commands with limited privileges. Because it is exploitable remotely and does not require user interaction, it poses a significant security risk, potentially compromising system integrity, confidentiality, and availability.

Mitigation Strategies

Currently, there are no official patches or mitigation details provided for this vulnerability.

Since the vulnerability involves unescaped shell meta characters in the Samba printing subsystem, a cautious approach would be to restrict access to the Samba printing service and monitor for suspicious print job descriptions.

Keep an eye on official Samba project updates and apply any patches or recommended mitigations as soon as they become available.

Detection Guidance

There are no specific detection commands or methods provided in the available resources or CVE description for identifying this vulnerability on your network or system.

Since the vulnerability involves the Samba printing subsystem passing unescaped job description strings to shell commands, monitoring or logging unusual print job descriptions containing shell meta characters could be a potential approach.

However, no official detection commands or scripts are currently available as the issue is under active investigation and no patch or mitigation details have been released.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-4480. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart