Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 9 : ipa-4.12.2-14.el9_6.1 (AXSA:2025-10543:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10543:04 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from th...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : idm:DL1 (AXSA:2025-10036:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10036:01 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from th...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/11/11 2:5 p.m.6 views

FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA

A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...

9.1CVSS5.7AI score0.01827EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.4 views

AlmaLinux 10 : ipa (ALSA-2025:9190)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9190 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.2 views

RockyLinux 10 : ipa (RLSA-2025:9190)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9190 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
OSV
OSV
added 2025/10/04 12:11 a.m.4 views

RLSA-2025:9184 Important: ipa security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

9.1CVSS9.3AI score0.01827EPSS
Exploits1References2
OSV
OSV
added 2025/10/03 7:56 p.m.4 views

RLSA-2025:9190 Important: ipa security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

9.1CVSS9.2AI score0.01827EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.3 views

RockyLinux 8 : idm:DL1 (RLSA-2025:9188)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9188 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
OSV
OSV
added 2025/07/29 1:38 p.m.6 views

RLSA-2025:9188 Important: idm:DL1 security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

9.1CVSS6.9AI score0.01827EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2025/07/07 12:0 a.m.14 views

ipa security update

4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890...

9.1CVSS7.6AI score0.01827EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/07/07 12:0 a.m.5 views

Oracle Linux 7 : ipa (ELSA-2025-9189)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9189 advisory. 4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890 Tenable has extracted the preceding descriptio...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/30 12:0 a.m.9 views

AlmaLinux 9 : ipa (ALSA-2025:9184)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9184 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/06/30 12:0 a.m.6 views

AlmaLinux 8 : idm:DL1 (ALSA-2025:9188)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9188 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
Amazon
Amazon
added 2025/06/24 12:0 a.m.5 views

Critical: ipa

Issue Overview: A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM...

9.1CVSS6.9AI score0.01827EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/06/18 12:0 a.m.7 views

Oracle Linux 9 : ipa (ELSA-2025-9184)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9184 advisory. - Resolves: RHEL-89908 EMBARGOED CVE-2025-4404 ipa: Privilege escalation from host to domain admin in FreeIPA Tenable has extracted the preceding description...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References2
Circl
Circl
added 2025/06/17 2:39 p.m.8 views

CVE-2025-4404

creationtimestamp| type| source ---|---|--- 2025-06-17 14:39:59+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18594 2025-06-17 14:55:56+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114699282395931964 2025-06-17 15:08:20+00:00| seen|...

9.1CVSS8.7AI score0.01827EPSS
Exploits1References8
OSV
OSV
added 2025/06/17 2:15 p.m.7 views

CVE-2025-4404

A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...

9.1CVSS7.1AI score0.01827EPSS
Exploits1References15
OSV
OSV
added 2025/06/17 2:15 p.m.2 views

DEBIAN-CVE-2025-4404

A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...

9.1CVSS8.4AI score0.01827EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/06/17 1:39 p.m.5 views

CVE-2025-4404

A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...

9.1CVSS8.4AI score0.01827EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2025/06/17 1:39 p.m.19 views

CVE-2025-4404 Freeipa: idm: privilege escalation from host to domain admin in freeipa

A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...

9.1CVSS9.4AI score0.01827EPSS
Exploits1References15
Rows per page
Query Builder