Lucene search
K

35 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:49 p.m.61 views

K16443: MIT Kerberos 5 vulnerabilities CVE-2014-9421 and CVE-2014-5352

Security Advisory Description CVE-2014-9421 The authgssapiunwrapdata function in lib/rpc/authgssapimisc.c in MIT Kerberos 5 aka krb5 through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cau...

9CVSS8.4AI score0.06213EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/02 1:24 p.m.68 views

Security Bulletin: IBM DataPower Gateway affected by vulnerabilities in Kerberos

Summary IBM has provided explicit mitigation for the following Kerberos CVEs. DataPower did not previously provide the conditions necessary to exploit these CVEs. The explicit mitigations provided here protect against possible future changes that might have made them exploitable. Vulnerability...

9CVSS9AI score0.06614EPSS
Exploits0Affected Software3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2015:0257-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.2AI score0.06213EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2015:0290-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.9AI score0.06213EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:25 p.m.48 views

Security Bulletin: Vulnerabilities in Kerberos (krb5) affect IBM Security Network Protection (CVE-2014-5352, CVE-2014-5353, CVE-2014-5355, CVE-2014-9421, and CVE-2014-9422)

Summary IBM Security Network Protection uses Kerberos krb5 to provide network authentication. The Kerberos krb5 version that is shipped with IBM Security Network Protection contains multiple security vulnerabilities. Vulnerability Details CVE-ID: CVE-2014-5352 Description: MIT krb5 could allow a...

9CVSS1.4AI score0.06213EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.26 views

SUSE: Security Advisory for krb5 (SUSE-SU-2015:0290-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7AI score0.06213EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.35 views

SUSE: Security Advisory for krb5 (SUSE-SU-2015:0257-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.6AI score0.06213EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.33 views

Oracle: Security Advisory (ELSA-2015-0794)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.2AI score0.06213EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.34 views

Oracle: Security Advisory (ELSA-2015-0439)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.7AI score0.08085EPSS
Exploits0References2
IBM AIX
IBM AIX
added 2015/05/21 5:6 a.m.212 views

Multiple Security vulnerabilities in IBM NAS(kerberos)

IBM SECURITY ADVISORY First Issued : Thu May 21 05:06:05 CDT 2015 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/nasadvisory3.asc https://aix.software.ibm.com/aix/efixes/security/nasadvisory3.asc...

9CVSS7.9AI score0.06213EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.39 views

SUSE SLED12 / SLES12 Security Update : krb5 (SUSE-SU-2015:0290-2)

MIT kerberos krb5 was updated to fix several security issues and bugs. Security issues fixed: CVE-2014-5351: The kadm5randkeyprincipal3 function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 sent old keys in a response to a -randkey -keepold request, which allowed remote...

9CVSS6.8AI score0.06213EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2015/04/10 12:0 a.m.40 views

RedHat Update for krb5 RHSA-2015:0794-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.06213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/04/10 12:0 a.m.41 views

CentOS 6 : krb5 (CESA-2015:0794)

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available fo...

9CVSS7AI score0.06213EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2015/04/09 12:0 a.m.54 views

krb5 security update

1.10.3-37 - fix for CVE-2014-5355 1193939 'krb5: unauthenticated denial of service in recvauthcommon and others' 1.10.3-36 - fix for CVE-2014-5353 1174543 'Fix LDAP misused policy name crash' 1.10.3-35 - Changelog fixes to make errata subsystem happy. 1.10.3-34 - fix for CVE-2014-5352 1179856...

9CVSS2.8AI score0.06213EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/04/09 12:0 a.m.43 views

RHEL 6 : krb5 (RHSA-2015:0794)

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available fo...

9CVSS7AI score0.06213EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2015/03/13 12:0 a.m.37 views

Oracle Linux 7 : krb5 (ELSA-2015-0439)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-0439 advisory. - fix for CVE-2014-5352 1179856 'gssprocesscontexttoken incorrectly frees context MITKRB5-SA-2015-001' - fix for CVE-2014-9421 1179857 'kadmind doubly...

9CVSS6.8AI score0.08085EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2015/03/13 12:0 a.m.38 views

Fedora Update for krb5 FEDORA-2015-2347

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.9AI score0.06213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/03/10 12:0 a.m.32 views

Fedora 20 : krb5-1.11.5-18.fc20 (2015-2382)

Security fix for CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423 Security fix for CVE-2014-5351 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as muc...

9CVSS7AI score0.06213EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2015/03/10 12:0 a.m.35 views

Fedora Update for krb5 FEDORA-2015-2382

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.7AI score0.08085EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/03/06 12:0 a.m.32 views

RedHat Update for krb5 RHSA-2015:0439-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.5AI score0.08085EPSS
Exploits0References2
Rows per page
Query Builder