Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.4 views

Astra Linux – Vulnerability in Heimdal

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial-of-service vulnerability in Heimdal’s PKI certificate validation library. This vulnerability affects the KDC via PKINIT and kinit via PKINIT, as well as any third-party applications...

7.5CVSS6.1AI score0.00891EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 6:21 a.m.2 views

SUSE CVE-2004-0371

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path...

5CVSS7AI score0.01528EPSS
Exploits0References3
OSV
OSVadded 2023/02/02 9:14 p.m.2 views

CLSA-2023-1675372486 Fix CVE(s): CVE-2022-3437

SECURITY UPDATE: heap-based buffer overflows in Heimdal ARC4 and DES3 - debian/patches/CVE-2022-3437.patch: add extra NULL pointer and buffer boundaries checks, fix undefined behaviour and input data length calculations, remove accidentally duplicated code in arcfour.c - CVE-2022-3437...

6.5CVSS6.8AI score0.03659EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/01/12 3:15 p.m.0 views

CVE-2022-3437

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a...

6.5CVSS6.8AI score0.03659EPSS
Exploits0References9
OSV
OSVadded 2022/11/04 11:4 a.m.3 views

OESA-2022-2038 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: The DES for Samba 4.11 and earlier and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a malicious...

6.5CVSS7.5AI score0.03659EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2022/10/28 12:0 a.m.2 views

The vulnerabilities of the unwrap_des() and unwrap_des3() functions in the GSSAPI library of the Heimdal package for Samba’s network communication software are exposed.

The vulnerability of the unwrapdes and unwrapdes3 functions in the GSSAPI library of the Heimdal package related to buffer overflow in the stack. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

5.9CVSS6.9AI score0.03659EPSS
Exploits0References11Affected Software6
OSV
OSVadded 2017/08/28 7:29 p.m.1 views

UBUNTU-CVE-2017-6594

The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets...

7.5CVSS7.2AI score0.01759EPSS
Exploits0References2
Rows per page
Query Builder