Lucene search
K

14 matches found

Cvelist
Cvelist
added 2026/04/01 5:25 p.m.20 views

CVE-2026-34397 himmelblau: NSS fake-primary group lookup reintroduces name collision risk

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From versions 2.0.0-alpha to before 2.3.9 and 3.0.0-alpha to before 3.1.1, there is a conditional local privilege escalation vulnerability in an edge-case naming collision. Only authenticated himmelblau users whose...

6.3CVSS0.00158EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-17031

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00288EPSS
Exploits0References4
OSV
OSV
added 2025/09/09 10:31 p.m.5 views

CVE-2025-59044 Himmelblau vulnerable to GID collision via group name-derived mapping (privilege escalation)

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Himmelblau 0.9.x derives numeric GIDs for Entra ID groups from the group display name when himmelblau.conf idattrmap = name the default configuration. Because Microsoft Entra ID allows multiple groups with the same...

4.4CVSS6.8AI score0.00132EPSS
Exploits0References5
CVE
CVE
added 2025/09/09 10:31 p.m.19 views

CVE-2025-59044

CVE-2025-59044 affects Himmelblau 0.9.x, where group-to-GID mapping derives numeric GIDs from Entra ID group displayName when id_attr_map = name. This can cause distinct groups sharing a displayName to collapse to the same GID on Linux, enabling privilege escalation if access is controlled by num...

4.4CVSS6.3AI score0.00132EPSS
Exploits0References3
OSV
OSV
added 2025/08/07 12:2 a.m.5 views

CVE-2025-54882 Himmelblau's Kerberos credential cache collection is world readable

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0, Himmelblau stores the cloud TGT received during logon in the Kerberos credential cache. The created credential cache collection and received credentials...

7.1CVSS6.3AI score0.00211EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/06/28 6:24 p.m.8 views

CVE-2025-53013

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. A vulnerability present in versions 0.9.10 through 0.9.16 allows a user to authenticate to a Linux host via Himmelblau using an invalid Linux Hello PIN, provided the host is offline. While the user gains access to th...

5.2CVSS6.5AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2025/06/26 6:2 p.m.19 views

CVE-2025-53013

Summary (CVE-2025-53013, Himmelblau) : Versions 0.9.10–0.9.16 allow offline authentication to a Linux host via Himmelblau using an invalid Linux Hello PIN. The root cause is an incorrect handling in acquire_token_by_hello_for_business_key: offline, a TPMFail is expected for an invalid key, but a ...

5.2CVSS7AI score0.00202EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/06/26 6:2 p.m.3 views

CVE-2025-53013 Himmelblau offline auth permits authentication with invalid Hello PIN

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. A vulnerability present in versions 0.9.10 through 0.9.16 allows a user to authenticate to a Linux host via Himmelblau using an invalid Linux Hello PIN, provided the host is offline. While the user gains access to th...

5.2CVSS7AI score0.00202EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.2 views

PT-2025-27005

Name of the Vulnerable Software and Affected Versions: Himmelblau versions 0.9.10 through 0.9.16 Description: A vulnerability in Himmelblau allows a user to authenticate to a Linux host using an invalid Linux Hello PIN when the host is offline. This issue arises from an incorrect assumption in th...

8.8CVSS6.1AI score0.00707EPSS
Exploits4References29
RedhatCVE
RedhatCVE
added 2025/06/07 11:18 p.m.25 views

CVE-2025-49012

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Himmelblau versions 0.9.0 through 0.9.14 and 1.00-alpha are vulnerable to a privilege escalation issue when Entra ID group-based access restrictions are configured using group display names instead of object IDs...

5.4CVSS5.6AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/05 10:29 p.m.44 views

CVE-2025-49012 Himmelblau's Name-Based Group Matching in `pam_allow_groups` Leads to Potential Security Bypass

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Himmelblau versions 0.9.0 through 0.9.14 and 1.00-alpha are vulnerable to a privilege escalation issue when Entra ID group-based access restrictions are configured using group display names instead of object IDs...

5.4CVSS0.00288EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/05 12:0 a.m.6 views

PT-2025-23984 · Microsoft +1 · Azure Entra Id +2

Name of the Vulnerable Software and Affected Versions: Himmelblau versions 0.9.0 through 0.9.14 Himmelblau version 1.00-alpha Description: Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. The issue arises when Entra ID group-based access restrictions are configured...

5.4CVSS6.4AI score0.00288EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/05/23 11:59 a.m.4 views

CVE-2025-24034

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Starting in version 0.7.0 and prior to versions 0.7.15 and 0.8.3, Himmelblau is vulnerable to leaking credentials in debug logs. When debug logging is enabled, user access tokens are inadvertently logged, potentially...

3.2CVSS6.9AI score0.00195EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/23 5:38 p.m.3 views

CVE-2025-24034 Himmelblau leaks credentials in the debug log

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Starting in version 0.7.0 and prior to versions 0.7.15 and 0.8.3, Himmelblau is vulnerable to leaking credentials in debug logs. When debug logging is enabled, user access tokens are inadvertently logged, potentially...

3.2CVSS4AI score0.00195EPSS
Exploits0References6
Rows per page
Query Builder