Lucene search
K

44 matches found

RedHat Linux
RedHat Linux
added 2024/08/20 4:13 p.m.23 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/08/20 3:50 p.m.20 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

9.1CVSS7AI score0.01863EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.17 views

RHEL 9 : krb5 (RHSA-2024:5643)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5643 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References7
Amazon
Amazon
added 2024/08/15 12:0 a.m.5 views

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Issue Correction: Run...

9.1CVSS7.2AI score0.01863EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.21 views

Oracle Linux 8 : krb5 (ELSA-2024-5312)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5312 advisory. 1.18.2-29.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-29 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.24 views

RHEL 7 : krb5 (RHSA-2024:5316)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5316 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/08/13 3:43 p.m.19 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/08/13 3:32 p.m.327 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: krb5 (CVE-2024-37371)

The version of krb5 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-37371 advisory. - In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.65 views

Amazon Linux 2023 : krb5-devel, krb5-libs, krb5-pkinit (ALAS2023-2024-688)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-688 advisory. krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.61 views

Amazon Linux 2 : krb5 (ALAS-2024-2595)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2595 advisory. krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens wi...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.22 views

RHEL 8 : krb5 (RHSA-2024:4734)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4734 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References7
Amazon
Amazon
added 2024/07/22 12:0 a.m.27 views

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Note: This advisory i...

9.1CVSS8.5AI score0.01863EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/17 12:0 a.m.33 views

Fedora 39 : krb5 (2024-df2c70dba9)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-df2c70dba9 advisory. This update fixes multiple CVEs and rebases to the latest upstream version: Tue Jul 09 2024 Julien Rische - 1.21.3-1 - New upstream version 1.21.3 -...

9.1CVSS7.5AI score0.01863EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2024/07/13 12:0 a.m.22 views

Fedora 40 : krb5 (2024-1f68985052)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-1f68985052 advisory. This update fixes multiple CVEs and rebases to the latest upstream version: Tue Jul 09 2024 Julien Rische - 1.21.3-1 - New upstream version 1.21.3 -...

9.1CVSS7.5AI score0.01863EPSS
Exploits3References6
Mageia
Mageia
added 2024/07/03 4:36 p.m.43 views

Updated krb5 packages fix security vulnerabilities

Before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application. CVE-2024-37370 Before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References1
NVD
NVD
added 2024/06/28 11:15 p.m.27 views

CVE-2024-37371

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields...

9.1CVSS0.01863EPSS
Exploits0References5
OSV
OSV
added 2024/06/28 11:15 p.m.22 views

CVE-2024-37371

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields...

9.1CVSS6.6AI score
Exploits0References4
Cvelist
Cvelist
added 2024/06/28 12:0 a.m.26 views

CVE-2024-37371

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields...

0.01863EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/28 12:0 a.m.1 views

MIT Kerberos Security Vulnerability

MIT Kerberos is a Massachusetts Institute of Technology MIT software for authentication in network clusters.Kerberos also serves as a network authentication protocol designed with the goal of providing strong authentication services to client/server applications through a key system. A security...

9.1CVSS6.8AI score0.01863EPSS
Exploits0References7
Rows per page
Query Builder