CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

708 matches found

Tenable Nessus•added 2023/02/08 12:0 a.m.•33 views

Debian dla-3311 : heimdal-clients - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3311 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3311-1 [email protected]...

7.5CVSS6.5AI score0.00727EPSS

Exploits0References6

Tenable Nessus•added 2023/01/25 12:0 a.m.•120 views

Ubuntu 20.04 LTS / 22.04 LTS : Samba vulnerabilities (USN-5822-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5822-1 advisory. It was discovered that Samba incorrectly handled the bad password count logic. A remote attacker could possibly use this issue to bypass bad...

9.8CVSS7.9AI score0.10832EPSS

Exploits2References8

OSV•added 2023/01/24 7:58 a.m.•6 views

MGASA-2023-0010 Updated samba packages fix security vulnerability

There is a limited write heap buffer overflow in the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal included in Samba. Some SMB1 write requests were not correctly range checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into...

9.8CVSS7.8AI score0.10832EPSS

Exploits1References26

NVD•added 2023/01/12 3:15 p.m.•30 views

CVE-2022-3437

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a...

6.5CVSS7.1AI score0.00727EPSS

Exploits0References8

OSV•added 2023/01/12 3:15 p.m.•1 views

ALPINE-CVE-2022-3437

6.5CVSS7.2AI score0.00727EPSS

Exploits0References1

OSV•added 2023/01/12 3:15 p.m.•0 views

AZL-37016 CVE-2022-3437 affecting package samba for versions less than 4.18.3-1

6.5CVSS6.8AI score0.00727EPSS

Exploits0References1

OSV•added 2023/01/12 3:15 p.m.•30 views

CVE-2022-3437

6.5CVSS3.3AI score0.00727EPSS

Exploits0References8

OSV•added 2023/01/12 3:15 p.m.•1 views

DEBIAN-CVE-2022-3437

6.5CVSS6.8AI score0.00727EPSS

Exploits0References1

Prion•added 2023/01/12 3:15 p.m.•33 views

Heap overflow

4CVSS6.9AI score0.00727EPSS

Exploits0References7Affected Software2

Cvelist•added 2023/01/12 12:0 a.m.•21 views

CVE-2022-3437

7.8AI score0.00727EPSS

Exploits0References8

Vulnrichment•added 2023/01/12 12:0 a.m.•22 views

CVE-2022-3437

6.8AI score0.00727EPSS

Exploits0References8

Tenable Nessus•added 2023/01/12 12:0 a.m.•93 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Heimdal vulnerabilities (USN-5800-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5800-1 advisory. It was discovered that Heimdal incorrectly handled certain SPNEGO tokens. A remote attacker could possibly use this issue to caus...

9.8CVSS7.2AI score0.10832EPSS

Exploits1References5

AlpineLinux•added 2023/01/12 12:0 a.m.•46 views

CVE-2022-3437

6.5CVSS7.1AI score0.00727EPSS

Exploits0

CVE•added 2023/01/12 12:0 a.m.•987 views

CVE-2022-3437

CVE-2022-3437 is a heap-based buffer overflow in Samba’s use of Heimdal GSSAPI (unwrap_des/unwrap_des3). The fix involved making memcmp constant-time and patching a compiler-related issue by adding “!= 0” to memcmp results; backported patches were applied to heimdal-7.7.1 and 7.8.0 branches (and ...

6.5CVSS6.7AI score0.00727EPSS

Exploits0References8Affected Software1

Debian CVE•added 2023/01/12 12:0 a.m.•45 views

CVE-2022-3437

6.5CVSS6.8AI score0.00727EPSS

Exploits0

Tenable Nessus•added 2023/01/05 12:0 a.m.•39 views

EulerOS 2.0 SP11 : samba (EulerOS-SA-2023-1046)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and...

6.5CVSS6.7AI score0.00727EPSS

Exploits0References2

Tenable Nessus•added 2023/01/05 12:0 a.m.•45 views

EulerOS 2.0 SP11 : samba (EulerOS-SA-2023-1021)

6.5CVSS6.7AI score0.00727EPSS

Exploits0References2

Tenable Nessus•added 2022/12/22 12:0 a.m.•37 views

Fedora 35 : samba (2022-003403ec6b)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-003403ec6b advisory. Update to version 4.15.12 ---- Update to version 4.15.11 - Security fixes for CVE-2022-3437 Tenable has extracted the preceding description block...

8.8CVSS6.7AI score0.10832EPSS

Exploits1References3

Tenable Nessus•added 2022/12/22 12:0 a.m.•38 views

Fedora 36 : heimdal (2022-dba9ba8e2b)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-dba9ba8e2b advisory. Fixes: Delay service starts until after network is online rhbz2005501 Restart services on package update will apply when updating from this release...

9.8CVSS6.7AI score0.10832EPSS

Exploits1References7

Positive Technologies•added 2022/12/09 12:0 a.m.•3 views

PT-2022-6537 · Heimdal +4 · Heimdal +4

Name of the Vulnerable Software and Affected Versions: heimdal versions 7.7.1 through 7.8.0 Description: The issue is related to the implementation of the Kerberos5 protocol in heimdal, specifically concerning incorrect validation of message integrity codes. This can allow a remote attacker to...

7.8CVSS6.2AI score0.00727EPSS

Exploits0References33

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by