Skip to content

H3-2020-0007

SMB Null Session Allowed

Category SECURITY_MISCONFIGURATION
Base Score 0.1

Description

A specific type of weak share permissions, SMB null sessions allow unauthenticated connections from remote systems.

Impact

Null sessions do not require credentials and can expose information to be used in further attacks.

References