Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: krb5 (UTSA-2025-986177)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986177 advisory. In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token t...

7.5CVSS6.8AI score0.00748EPSS
Exploits0References4
OSV
OSV
added 2024/09/19 6:9 p.m.7 views

CLSA-2024-1726769396 krb5: Fix of 2 CVEs

CVE-2024-37370: prevent modification of Extra Count field in GSS krb5 wrap token to avoid appearing truncated to application - CVE-2024-37371: fix invalid memory reads during GSS message token handling...

9.1CVSS7AI score0.01863EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/20 3:55 p.m.6 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/20 3:50 p.m.4 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/13 3:43 p.m.5 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References6
Rows per page
Query Builder