Lucene search
K

135 matches found

RedHat Linux
RedHat Linux
added 2024/09/03 4:51 p.m.165 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2024/09/03 12:0 a.m.28 views

Moderate: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/08/23 2:53 a.m.4 views

SUSE CVE-2022-48943

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: make apf token non-zero to fix bug In current async pagefault logic, when a page is ready, KVM relies on kvmarchcandequeueasyncpagepresent to determine whether to deliver a READY event to the Guest. This function te...

4.7CVSS6.4AI score0.00244EPSS
Exploits0References11
OSV
OSV
added 2024/08/22 4:15 a.m.6 views

DEBIAN-CVE-2022-48943

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: make apf token non-zero to fix bug In current async pagefault logic, when a page is ready, KVM relies on kvmarchcandequeueasyncpagepresent to determine whether to deliver a READY event to the Guest. This function te...

7.8CVSS5.2AI score0.00244EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/20 4:13 p.m.23 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.17 views

RHEL 9 : krb5 (RHSA-2024:5643)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5643 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References7
Amazon
Amazon
added 2024/08/15 12:0 a.m.6 views

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Issue Correction: Run...

9.1CVSS7.2AI score0.01863EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.21 views

Oracle Linux 8 : krb5 (ELSA-2024-5312)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5312 advisory. 1.18.2-29.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-29 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.24 views

RHEL 7 : krb5 (RHSA-2024:5316)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5316 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

9.1CVSS7.4AI score0.01863EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/08/13 3:43 p.m.20 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/08/13 3:32 p.m.327 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.1CVSS7AI score0.01863EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.66 views

Amazon Linux 2023 : krb5-devel, krb5-libs, krb5-pkinit (ALAS2023-2024-688)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-688 advisory. krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: krb5 (CVE-2024-37371)

The version of krb5 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-37371 advisory. - In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.61 views

Amazon Linux 2 : krb5 (ALAS-2024-2595)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2595 advisory. krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens wi...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References6
Amazon
Amazon
added 2024/07/22 12:0 a.m.30 views

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Note: This advisory i...

9.1CVSS8.5AI score0.01863EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/17 12:0 a.m.33 views

Fedora 39 : krb5 (2024-df2c70dba9)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-df2c70dba9 advisory. This update fixes multiple CVEs and rebases to the latest upstream version: Tue Jul 09 2024 Julien Rische - 1.21.3-1 - New upstream version 1.21.3 -...

9.1CVSS7.5AI score0.01863EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2024/07/13 12:0 a.m.22 views

Fedora 40 : krb5 (2024-1f68985052)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-1f68985052 advisory. This update fixes multiple CVEs and rebases to the latest upstream version: Tue Jul 09 2024 Julien Rische - 1.21.3-1 - New upstream version 1.21.3 -...

9.1CVSS7.5AI score0.01863EPSS
Exploits3References6
NVD
NVD
added 2024/07/05 5:15 p.m.26 views

CVE-2024-27717

Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component...

6.5CVSS0.00191EPSS
Exploits0References1
OSV
OSV
added 2024/07/05 5:15 p.m.6 views

CVE-2024-27717

Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component...

6.5CVSS5.8AI score0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/05 12:0 a.m.11 views

CVE-2024-27717

Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component...

7.2AI score0.00191EPSS
Exploits0References1
Rows per page
Query Builder