Lucene search
K

58 matches found

Tenable Nessus
Tenable Nessus
added 2022/10/10 12:0 a.m.39 views

Amazon Linux 2 : krb5 (ALAS-2022-1845)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1845 advisory. A flaw was found in krb5. MIT Kerberos 5 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.3AI score0.04365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.45 views

RHEL 8 : Red Hat Virtualization Host security update [ovirt-4.4.6] (Moderate) (RHSA-2021:2239)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2239 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

9.1CVSS7.8AI score0.06718EPSS
Exploits1References23
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.51 views

NewStart CGSL MAIN 6.02 : krb5 Vulnerability (NS-SA-2022-0057)

The remote NewStart CGSL host, running version MAIN 6.02, has krb5 packages installed that are affected by a vulnerability: - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.26 views

AlmaLinux 8 : krb5 (ALSA-2021:1593)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:1593 advisory. - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the...

7.5CVSS7.5AI score0.04365EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/11/22 6:3 a.m.26 views

Security Bulletin: Vulnerability in MIT Kerberos 5 (CVE-2020-28196) affects HMC

Summary MIT Kerberos 5 krb5 is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-28196 DESCRIPTION: MIT Kerberos 5 aka krb5 is vulnerable to a denial of service, caused by an unbounded recursion flaw in...

7.5CVSS7.4AI score0.04365EPSS
Exploits0Affected Software2
CBLMariner
CBLMariner
added 2021/11/03 7:21 p.m.13 views

CVE-2020-28196 affecting package krb5 1.17-4

CVE-2020-28196 affecting package krb5 1.17-4. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.9AI score0.04365EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2021-2141)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/06 12:0 a.m.38 views

EulerOS Virtualization 3.0.2.2 : krb5 (EulerOS-SA-2021-2141)

According to the version of the krb5 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because...

7.5CVSS7.5AI score0.04365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.38 views

Oracle Linux 7 : krb5 (ELSA-2021-9294)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9294 advisory. 1.15.1-50.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360 Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2020:3377-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.29 views

Oracle Linux 8 : krb5 (ELSA-2021-1593)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1593 advisory. - Add recursion limit for ASN.1 indefinite lengths CVE-2020-28196 Tenable has extracted the preceding description block directly from the Oracle Linux security...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2021/05/25 12:0 a.m.55 views

krb5 security update

1.18.2-8 - Add recursion limit for ASN.1 indefinite lengths CVE-2020-28196 - Resolves: 1906492 1.18.2-7 - Document -k option in kvno1 synopsis - Resolves: 1869055 1.18.2-6 - Enable MD5 override for FIPS RADIUS - Resolves: 1872689 1.18.2-5.2 - Unify kvno option documentation - Resolves: 1869055...

7.5CVSS1.8AI score0.04365EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.37 views

CentOS 8 : krb5 (CESA-2021:1593)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:1593 advisory. - krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1encode.c may lead to DoS CVE-2020-28196 Note that Nessus has not tested...

7.5CVSS7.5AI score0.04365EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2021/05/18 5:36 a.m.40 views

Moderate: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

5CVSS1.5AI score0.04365EPSS
Exploits0References1
OSV
OSV
added 2021/05/18 5:36 a.m.33 views

RLSA-2021:1593 Moderate: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

7.5CVSS7.9AI score0.04365EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/21 12:0 a.m.30 views

Oracle MySQL Server 8.0 <= 8.0.23 Security Update (cpuapr2021) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

7.5CVSS6.9AI score0.04365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2020:3375-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.04365EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2020:3379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.04365EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/24 12:0 a.m.32 views

EulerOS 2.0 SP5 : krb5 (EulerOS-SA-2021-1685)

According to the version of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/24 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2021-1685)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04365EPSS
Exploits0References2
Rows per page
Query Builder