CVE-2026-3238
Awaiting Analysis Awaiting Analysis - Queue

Samba WINS Server NULL Pointer Dereference Vulnerability

Publication date: 2026-06-08

Last updated on: 2026-06-08

Assigner: Red Hat, Inc.

Description
A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the WINS service using specially crafted UDP packets.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-08
Last Modified
2026-06-08
Generated
2026-06-29
AI Q&A
2026-06-08
EPSS Evaluated
2026-06-27
NVD
CVE-2026-3238
EUVD
EUVD-2026-35033

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
samba samba From 2026-06-08 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-3238 is a vulnerability in Samba's WINS server component when it is running as an Active Directory Domain Controller. The issue occurs because the WINS protocol handlers do not properly validate certain incoming UDP packets. This allows an unauthenticated remote attacker to send specially crafted packets that trigger a NULL pointer dereference, causing the WINS service to crash.

Impact Analysis

This vulnerability can lead to a denial of service (DoS) condition by crashing the WINS service on an Active Directory Domain Controller. Since the attacker does not need to be authenticated, they can remotely disrupt the availability of the WINS service, potentially impacting network name resolution and domain controller functionality.

Compliance Impact

The vulnerability in Samba's WINS server component allows an unauthenticated remote attacker to cause a denial of service by crashing the WINS service. This results in availability disruption of the Active Directory Domain Controller's WINS service.

While the vulnerability impacts service availability, there is no indication from the provided information that it leads to unauthorized access, data disclosure, or data integrity issues.

Therefore, the direct impact on compliance with data protection regulations such as GDPR or HIPAA, which primarily focus on confidentiality and integrity of personal data, is limited to potential availability concerns.

Organizations relying on Samba AD DC WINS services should consider the risk of denial of service in their availability controls and incident response plans to maintain compliance with standards that require system availability.

Detection Guidance

This vulnerability can be detected by monitoring for crashes or service interruptions of the Samba WINS server component running as an Active Directory Domain Controller. Since the issue is triggered by specially crafted UDP packets causing a NULL pointer dereference, network traffic analysis focusing on unusual or malformed UDP packets targeting the WINS service port may help identify exploitation attempts.

Specific commands or detection tools are not provided in the available resources.

Mitigation Strategies

Immediate mitigation steps are not explicitly detailed in the provided resources. However, general best practices include restricting UDP traffic to the WINS service from untrusted networks, applying any available patches or updates from Samba or your distribution vendor once released, and monitoring the WINS service for crashes or abnormal behavior.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-3238. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart