CVE-2020-17049

🗓️ 11 Nov 2020 07:15:16Reported by GoogleType

osv🔗 osv.dev👁 34 Views

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD). To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it. The update addresses this vulnerability by changing how the KDC validates service tickets used with KCD

Reporter	Title	Published	Views	Family All 140
ALT Linux	Security fix for the ALT Linux 10 package samba version 4.14.9-alt1	1 Nov 202100:00	–	altlinux
IBM Security Bulletins	Security Bulletin: A buffer overread, security restrictions bypass, a use-after-free, and other vulnerabilities might affect IBM Storage Defender – Resiliency Service	25 Mar 202523:50	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities were discovered in IBM Application Gateway	4 Jun 202523:00	–	ibm
ATTACKERKB	CVE-2020-17049	11 Nov 202000:00	–	attackerkb
Tenable Nessus	Amazon Linux 2022 : samba (ALAS2022-2022-213)	9 Dec 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : libnetapi, libnetapi-devel, libsmbclient (ALAS2023-2023-032)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : samba (ALAS-2022-1642)	10 Dec 202200:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0022: idm:DL1 (ALINUX3-SA-2024:0022)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : krb5 (ALSA-2023:2570)	14 May 202300:00	–	nessus
Tenable Nessus	AlmaLinux 8 : idm:DL1 (ALSA-2024:0143)	12 Jan 202400:00	–	nessus

Source	Link
openwall	www.openwall.com/lists/oss-security/2021/11/10/3
security	www.security.gentoo.org/glsa/202309-06
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049

10 Apr 2026 04:23Current

7.5High risk

Vulners AI Score7.5

CVSS 3.16.6

EPSS0.248