Lucene search
K

34 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-3116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on th...

7.5CVSS7.2AI score0.00885EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/10/05 12:0 a.m.4 views

CVE-2022-3116

...

7.5CVSS7.2AI score0.00885EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/08/12 12:0 a.m.5 views

The vulnerability of the Heimdal protocol’s Kerberos 5 implementation, related to the handling of the zero pointer, allows a perpetrator to cause a service failure.

The vulnerability of the Heimdal protocol’s Kerberos 5 implementation is related to the handling of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

7.8CVSS7.1AI score0.00885EPSS
Exploits0References5Affected Software2
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.5 views

Heimdal security breach

Heimdal is a Kerberos implementation and security program from Heimdal Open Source. A security vulnerability exists in Heimdal that originates from allowing an attacker to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. Affected products and versions:...

9.1CVSS6.6AI score0.00658EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/03/30 1:46 a.m.2 views

SUSE CVE-2022-3116

The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash...

7.5CVSS7.7AI score0.00885EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/01/04 12:0 a.m.4 views

The vulnerability of the Heimdal Kerberos protocol in the Samba network communication software allows a attacker to execute arbitrary code.

The vulnerability of the Heimdal Kerberos protocol in the Samba network communication software package is related to the use of the cryptographic algorithm RC4-HMAC. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS7.2AI score0.00454EPSS
Exploits0References13Affected Software4
CNNVD
CNNVD
added 2022/11/15 12:0 a.m.1 views

Heimdal 安全漏洞

Heimdal is a Kerberos implementation and security program from Heimdal open source. Heimdal versions prior to 7.7.1 has a security vulnerability , the vulnerability stems from the existence of PKI certificate validation library denial of service...

7.5CVSS6.2AI score0.00891EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2022/11/01 12:0 a.m.39 views

Samba 4.0.x < 4.15.11 / 4.16.x < 4.16.6 / 4.17.x < 4.17.2 Buffer Overflow

A heap-based buffer overflow condition exists in all versions of Samba since 4.0 compiled with Heimdal Kerberos. Heimdal's GSSAPI library routines unwrapdes and unwrapdes3 DES for Samba 4.11 and earlier, Triple-DES for later versions contain a length-limited write heap buffer overflow on malloc...

6.5CVSS7.3AI score0.0369EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/13 12:0 a.m.5 views

Heimdal Software Kerberos 5 代码问题漏洞

Heimdal is a Kerberos implementation and security program from Heimdal Open Source. A code issue vulnerability exists in Heimdal Software Kerberos 5 that stems from a null pointer dereference that causes the application to crash...

7.5CVSS7.2AI score0.00885EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.1 views

PT-2022-7431 · Heimdal +3 · Heimdal Kerberos 5 +3

Name of the Vulnerable Software and Affected Versions: Heimdal Software Kerberos 5 affected versions not specified Description: The issue is related to a null pointer dereference in the Heimdal Software Kerberos 5 implementation. This can be exploited by an attacker with network access to cause t...

7.8CVSS6.5AI score0.02486EPSS
Exploits0References29
CERT
CERT
added 2022/10/07 12:0 a.m.52 views

Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference

Overview The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash. Description CVE-2022-3116 A flawed logical condition in...

7.5CVSS7.2AI score0.00885EPSS
Exploits0
OSV
OSV
added 2022/08/11 11:4 a.m.5 views

OESA-2022-1817 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue ...

8.8CVSS6.8AI score0.01064EPSS
Exploits0References5
Samba
Samba
added 2021/11/09 12:0 a.m.51 views

Kerberos acceptors need easy access to stable

Description In order to avoid issues like CVE-2020-25717 AD Kerberos accepting services need access to unique, and ideally long-term stable identifiers of a user to perform authorization. The AD PAC provides this, but the most useful information is kept in a buffer which is NDR encoded, which mea...

8.8CVSS0.01984EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.43 views

SUSE SLES11 Security Update : bind (SUSE-SU-2021:14714-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14714-1 advisory. - In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND 9...

9.8CVSS8.2AI score0.83406EPSS
Exploits0References8
OSV
OSV
added 2021/04/29 1:15 a.m.37 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS8.3AI score0.11296EPSS
Exploits0References10
Cvelist
Cvelist
added 2021/04/29 12:55 a.m.30 views

CVE-2021-25216 A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

8.1CVSS10AI score0.83406EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2020/04/16 12:0 a.m.4 views

The vulnerability of the Heimdal protocol’s Kerberos implementation, related to errors in managing cryptographic keys, allows a perpetrator to carry out a “man-in-the-middle” attack.

The vulnerability of the Heimdal protocol’s Kerberos implementation is related to errors in managing cryptographic keys. Exploiting this vulnerability could allow a malicious actor to carry out a “man-in-the-middle” attack...

8.8CVSS7.1AI score0.01981EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.3 views

The vulnerability of the Heimdal protocol’s Kerberos implementation in the Samba network communication software allows attackers to expose sensitive information or cause service failures.

The vulnerability of the Heimdal protocol’s Kerberos 5 implementation in the Samba network communication software package is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to disclose protected informatio...

7.5CVSS7.2AI score0.02486EPSS
Exploits0References6Affected Software3
OpenVAS
OpenVAS
added 2018/02/04 12:0 a.m.28 views

Debian: Security Advisory (DLA-1027-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.05118EPSS
Exploits0References4
CNVD
CNVD
added 2017/12/07 12:0 a.m.3 views

Heimdal denial of service vulnerability

Heimdal is a Kerberos 5 implementation. A security vulnerability exists in Heimdal version 7.1.0. A remote attacker can exploit this vulnerability by sending specially crafted UDP packets to cause a denial of service crash, null pointer backreference, and segmentation error...

7.5CVSS6.8AI score0.03427EPSS
Exploits0References1
Rows per page
Query Builder