Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:1361412562311220212466HistorySep 24, 2021 - 12:00 a.m.
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2021-2466)
2021-09-2400:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.7 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
78.5%
The remote host is missing an update for the Huawei EulerOS
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.2.2021.2466");
script_cve_id("CVE-2021-36222");
script_tag(name:"creation_date", value:"2021-09-24 02:24:28 +0000 (Fri, 24 Sep 2021)");
script_version("2024-02-05T14:36:56+0000");
script_tag(name:"last_modification", value:"2024-02-05 14:36:56 +0000 (Mon, 05 Feb 2024)");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2021-08-02 19:14:23 +0000 (Mon, 02 Aug 2021)");
script_name("Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2021-2466)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("Huawei EulerOS Local Security Checks");
script_dependencies("gb_huawei_euleros_consolidation.nasl");
script_mandatory_keys("ssh/login/euleros", "ssh/login/rpms", re:"ssh/login/release=EULEROS\-2\.0SP8");
script_xref(name:"Advisory-ID", value:"EulerOS-SA-2021-2466");
script_xref(name:"URL", value:"https://developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html?secId=EulerOS-SA-2021-2466");
script_tag(name:"summary", value:"The remote host is missing an update for the Huawei EulerOS 'krb5' package(s) announced via the EulerOS-SA-2021-2466 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"In MIT krb5 releases 1.16 and later, an unauthenticated attacker can cause a null dereference in the KDC by sending a request containing a PA-ENCRYPTED-CHALLENGE padata element without using FAST.(CVE-2021-36222)");
script_tag(name:"affected", value:"'krb5' package(s) on Huawei EulerOS V2.0SP8.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "EULEROS-2.0SP8") {
if(!isnull(res = isrpmvuln(pkg:"krb5-devel", rpm:"krb5-devel~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"krb5-libs", rpm:"krb5-libs~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"krb5-pkinit", rpm:"krb5-pkinit~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"krb5-server", rpm:"krb5-server~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"krb5-server-ldap", rpm:"krb5-server-ldap~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"krb5-workstation", rpm:"krb5-workstation~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libkadm5", rpm:"libkadm5~1.16.1~21.h6.eulerosv2r8", rls:"EULEROS-2.0SP8"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
prion
prion
Null pointer dereference
2021-07-22 18:15:00
osv
osv
CVE-2021-36222
2021-07-22 18:15:23
krb5 - security update
2021-07-25 00:00:00
Moderate: krb5 security update
2021-09-21 07:09:33
fedora
fedora
[SECURITY] Fedora 34 Update: krb5-1.19.1-14.fc34
2021-07-14 01:21:27
[SECURITY] Fedora 33 Update: krb5-1.18.2-30.fc33
2021-07-21 01:15:38
openvas
openvas
Fedora: Security Advisory for krb5 (FEDORA-2021-2bae525fd3)
2021-07-27 00:00:00
Debian: Security Advisory (DSA-4944-1)
2021-07-26 00:00:00
openSUSE: Security Advisory for krb5 (openSUSE-SU-2021:2800-1)
2021-08-21 00:00:00
nessus
nessus
Debian DSA-4944-1 : krb5 - security update
2021-07-25 00:00:00
SUSE SLED15 / SLES15 Security Update : krb5 (SUSE-SU-2021:2800-1)
2021-08-21 00:00:00
openSUSE 15 Security Update : krb5 (openSUSE-SU-2021:2800-1)
2021-08-21 00:00:00
ubuntucve
ubuntucve
CVE-2021-36222
2021-07-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-07-26 15:41:13
debian
debian
[SECURITY] [DSA 4944-1] krb5 security update
2021-07-25 07:27:47
[SECURITY] [DSA 4944-1] krb5 security update
2021-07-25 07:27:47
altlinux
altlinux
Security fix for the ALT Linux 10 package krb5 version 1.19.2-alt1
2021-07-26 00:00:00
Security fix for the ALT Linux 9 package krb5 version 1.17.2-alt2
2021-07-28 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-36222 affecting package krb5 for versions less than 1.19.2-1
2022-04-09 06:51:49
CVE-2021-36222 affecting package krb5 1.17-4
2021-11-03 19:21:15
suse
suse
Security update for krb5 (important)
2021-08-23 00:00:00
Security update for krb5 (important)
2021-08-20 00:00:00
Security update for samba (important)
2022-02-01 00:00:00
debiancve
debiancve
CVE-2021-36222
2021-07-22 18:15:00
cve
cve
CVE-2021-36222
2021-07-22 18:15:00
alpinelinux
alpinelinux
CVE-2021-36222
2021-07-22 18:15:00
redhatcve
redhatcve
CVE-2021-36222
2021-07-19 15:50:13
oraclelinux
oraclelinux
krb5 security update
2021-09-23 00:00:00
cloudfoundry
cloudfoundry
USN-5959-1: Kerberos vulnerabilities Severity | Cloud Foundry
2023-04-29 00:00:00
redhat
redhat
(RHSA-2021:3576) Moderate: krb5 security update
2021-09-21 07:09:33
almalinux
almalinux
Moderate: krb5 security update
2021-09-21 07:09:33
rocky
rocky
krb5 security update
2021-09-21 07:09:33
ubuntu
ubuntu
Kerberos vulnerabilities
2023-03-16 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2022-3.0-0342
2021-12-12 00:00:00
Important Photon OS Security Update - PHSA-2021-3.0-0342
2021-12-12 00:00:00
Important Photon OS Security Update - PHSA-2021-0455
2021-11-30 00:00:00
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2021-10-16 00:00:00
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.7 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
78.5%
Related for OPENVAS:1361412562311220212466