CVE-2026-3238
Awaiting Analysis Awaiting Analysis - Queue
Samba WINS Server NULL Pointer Dereference Vulnerability

Publication date: 2026-06-08

Last updated on: 2026-06-08

Assigner: Red Hat, Inc.

Description
A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the WINS service using specially crafted UDP packets.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-08
Last Modified
2026-06-08
Generated
2026-06-08
AI Q&A
2026-06-08
EPSS Evaluated
N/A
NVD
CVE-2026-3238
EUVD
EUVD-2026-35033
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
samba samba From 2026-06-08 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-3238 is a vulnerability in Samba's WINS server component when it is running as an Active Directory Domain Controller. The issue occurs because the WINS protocol handlers do not properly validate certain incoming UDP packets. This allows an unauthenticated remote attacker to send specially crafted packets that trigger a NULL pointer dereference, causing the WINS service to crash.

Impact Analysis

This vulnerability can lead to a denial of service (DoS) condition by crashing the WINS service on an Active Directory Domain Controller. Since the attacker does not need to be authenticated, they can remotely disrupt the availability of the WINS service, potentially impacting network name resolution and domain controller functionality.

Compliance Impact

The vulnerability in Samba's WINS server component allows an unauthenticated remote attacker to cause a denial of service by crashing the WINS service. This results in availability disruption of the Active Directory Domain Controller's WINS service.

While the vulnerability impacts service availability, there is no indication from the provided information that it leads to unauthorized access, data disclosure, or data integrity issues.

Therefore, the direct impact on compliance with data protection regulations such as GDPR or HIPAA, which primarily focus on confidentiality and integrity of personal data, is limited to potential availability concerns.

Organizations relying on Samba AD DC WINS services should consider the risk of denial of service in their availability controls and incident response plans to maintain compliance with standards that require system availability.

Detection Guidance

This vulnerability can be detected by monitoring for crashes or service interruptions of the Samba WINS server component running as an Active Directory Domain Controller. Since the issue is triggered by specially crafted UDP packets causing a NULL pointer dereference, network traffic analysis focusing on unusual or malformed UDP packets targeting the WINS service port may help identify exploitation attempts.

Specific commands or detection tools are not provided in the available resources.

Mitigation Strategies

Immediate mitigation steps are not explicitly detailed in the provided resources. However, general best practices include restricting UDP traffic to the WINS service from untrusted networks, applying any available patches or updates from Samba or your distribution vendor once released, and monitoring the WINS service for crashes or abnormal behavior.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-3238. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart