Lucene search
+L

377 matches found

NVD
NVD
added 2021/08/23 5:15 a.m.19 views

CVE-2021-37750

The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...

6.5CVSS0.02166EPSS
Exploits0References8
Prion
Prion
added 2021/08/23 5:15 a.m.19 views

Null pointer dereference

The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...

4CVSS6.7AI score0.02166EPSS
Exploits0References8Affected Software5
CNNVD
CNNVD
added 2021/08/23 12:0 a.m.3 views

MIT Kerberos 代码问题漏洞

MIT Kerberos is a Massachusetts Institute of Technology MIT software for authentication in network clusters.Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications through a key system. A security vulnerability...

6.5CVSS7AI score0.02166EPSS
Exploits0References46
CVE
CVE
added 2021/08/23 12:0 a.m.418 views

CVE-2021-37750

CVE-2021-37750 is a vulnerability in MIT Kerberos 5 (krb5) where the Key Distribution Center (KDC) can suffer a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field. Affected releases include krb5 before 1.18.5 and 1.19.x before 1.19.3. The issue can cause ...

6.5CVSS6.6AI score0.02166EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2021/08/23 12:0 a.m.24 views

CVE-2021-37750

The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...

6.9AI score0.02166EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2021/08/23 12:0 a.m.31 views

CVE-2021-37750

The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...

6.5CVSS7AI score0.02166EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/08/10 12:0 a.m.5 views

The vulnerability of the Key Distribution Center (KDC) component of the Kerberos authentication protocol allows a perpetrator to cause a service failure.

The vulnerability of the Key Distribution Center KDC component of the Kerberos authentication protocol is related to the use of the NULL pointer. Exploiting this vulnerability allows a malicious actor to cause a service failure...

7.8CVSS6.7AI score0.10276EPSS
Exploits0References11Affected Software6
NCSC
NCSC
added 2021/07/26 12:0 a.m.6 views

Vulnerability fixed in MIT Kerberos

A vulnerability has been fixed in krb5, part of MIT's Kerberos. A malicious party could potentially exploit the vulnerability to cause a denial-of-service on the KDC process through a specially prepared request. -= Debian =- Debian has made updates to krb5 available for Debian 10.0 Buster to fix...

7.5CVSS7.4AI score0.10276EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/07/26 12:0 a.m.25 views

Debian: Security Advisory (DSA-4944-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.10276EPSS
Exploits0References4
OSV
OSV
added 2021/07/22 6:15 p.m.30 views

CVE-2021-36222

ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...

7.5CVSS7.4AI score
Exploits0References7
OSV
OSV
added 2021/07/22 6:15 p.m.4 views

UBUNTU-CVE-2021-36222

ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...

7.5CVSS6.8AI score0.10276EPSS
Exploits0References3
CNVD
CNVD
added 2021/07/16 12:0 a.m.27 views

Microsoft Windows Server Information Disclosure Vulnerability (CNVD-2021-54418)

Windows Server is the brand name of a series of server operating systems released by Microsoft, including all Windows operating systems released under the brand name "Windows Server". An information disclosure vulnerability exists in the "Key Distribution Center" in Microsoft Windows Server. No...

5.9CVSS1.8AI score0.03031EPSS
Exploits0References1
OSV
OSV
added 2021/07/14 6:15 p.m.1 views

CVE-2021-33764

Windows Key Distribution Center Information Disclosure Vulnerability...

5.9CVSS6.8AI score0.03031EPSS
Exploits0References1
NVD
NVD
added 2021/07/14 6:15 p.m.14 views

CVE-2021-33764

Windows Key Distribution Center Information Disclosure Vulnerability...

5.9CVSS0.03031EPSS
Exploits0References1
Prion
Prion
added 2021/07/14 6:15 p.m.22 views

Information disclosure

Windows Key Distribution Center Information Disclosure Vulnerability...

4.3CVSS6.2AI score0.03031EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2021/07/14 5:53 p.m.187 views

CVE-2021-33764

CVE-2021-33764 is a Windows Kerberos KDC information-disclosure issue affecting domain controllers. Public details describe a RFC 4556 (section 3.2.1) noncompliance that can impact PIV/smart-card scenarios. Microsoft’s out-of-band updates note a temporary mitigation using a registry key and advis...

5.9CVSS6.7AI score0.03031EPSS
Exploits0References1Affected Software4
Kaspersky
Kaspersky
added 2021/07/13 12:0 a.m.78 views

KLA12221 Multiple vulnerabillities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of...

9.9CVSS10AI score0.3067EPSS
Exploits1References117
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.5 views

Microsoft Windows Key Distribution Center 信息泄露漏洞

Windows Server is the brand name of a series of server operating systems released by Microsoft, including all Windows operating systems released under the brand name "Windows Server". An information disclosure vulnerability exists in the "Key Distribution Center" in Microsoft Windows Server. No...

5.9CVSS5.5AI score0.03031EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/07/13 12:0 a.m.2 views

PT-2021-4837 · Microsoft · Windows Key Distribution Center +1

Name of the Vulnerable Software and Affected Versions: Windows Key Distribution Center KDC affected versions not specified Description: The issue is related to information disclosure in the Kerberos Key Distribution Center KDC service of Microsoft Windows operating systems. It allows a remote...

7.1CVSS8.8AI score0.03031EPSS
Exploits0References9
ThreatPost
ThreatPost
added 2021/04/29 8:4 p.m.75 views

F5 Big-IP Vulnerable to Security-Bypass Bug

F5 Networks’ Big-IP Application Delivery Services appliance contains a Key Distribution Center KDC spoofing vulnerability, researchers disclosed – which an attacker could use to get past the security measures that protect sensitive workloads. Join Threatpost for “Fortifying Your Business Against...

0.2AI score0.01326EPSS
Exploits0References10
Rows per page
Query Builder