Lucene search
K

55 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in python-kdcproxy

If kdcproxy receives a request for a realm whose configuration does not define any server addresses, it will, by default, query DNS zone records that match the requested realm name. This creates a server-side request-forgery vulnerability, as an attacker could send a request for a realm that...

8.6CVSS5.6AI score0.00397EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.7 views

Amazon Linux 2 : python-kdcproxy, --advisory ALAS2-2025-3085 (ALAS-2025-3085)

The version of python-kdcproxy installed on the remote host is prior to 0.3.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3085 advisory. If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by...

8.6CVSS6.2AI score0.00453EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/20 8:10 a.m.3 views

python-kdcproxy: Unauthenticated SSRF via Realm‑Controlled DNS SRV

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS5.9AI score0.00397EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/12 4:35 p.m.3 views

CVE-2025-59088

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS6.6AI score0.00397EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.2 views

RHEL 10 : python-kdcproxy (RHSA-2025:21142)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:21142 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

8.6CVSS5.7AI score0.00453EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10983

Malware in sbrugna...

7.5CVSS7.5AI score0.03579EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-8023

Malware in sbrugna...

7.5CVSS7.4AI score0.03094EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-0817

Malware in sbrugna...

7.5CVSS6.2AI score0.02476EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-0452

Malicious code in bioql PyPI...

6.5CVSS7.4AI score0.01636EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 4:38 p.m.7 views

CVE-2020-35857

An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption...

7.5CVSS6.9AI score0.01439EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2024/01/31 12:21 a.m.23 views

Etcd Gateway TLS authentication only applies to endpoints detected in DNS SRV records

Vulnerability type Cryptography Workarounds Refer to the gateway documentation. The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation. Detail When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV...

6.5CVSS6.7AI score0.01636EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/01/31 12:21 a.m.22 views

GHSA-WR2V-9RPQ-C35Q Etcd Gateway TLS authentication only applies to endpoints detected in DNS SRV records

Vulnerability type Cryptography Workarounds Refer to the gateway documentation. The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation. Detail When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV...

6.5CVSS6.9AI score0.01636EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
added 2024/01/31 12:0 a.m.32 views

Missing Authentication for Critical Function

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS7.1AI score0.01636EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/10/06 11:12 p.m.12 views

etcd vulnerable to TOCTOU of gateway endpoint authentication

Vulnerability type Authentication Workarounds Refer to the gateway documentation. The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation. Detail The gateway only authenticates endpoints detected from DNS SRV records, and it only authenticates th...

1.5AI score
Exploits0References2Affected Software1
OSV
OSV
added 2022/10/06 11:12 p.m.18 views

GHSA-H8G9-6GVH-5MRC etcd vulnerable to TOCTOU of gateway endpoint authentication

Vulnerability type Authentication Workarounds Refer to the gateway documentation. The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation. Detail The gateway only authenticates endpoints detected from DNS SRV records, and it only authenticates th...

7.3AI score
Exploits0References2
GitLab Advisory Database
GitLab Advisory Database
added 2022/10/06 12:0 a.m.16 views

etcd vulnerable to TOCTOU of gateway endpoint authentication

The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation. Detail The gateway only authenticates endpoints detected from DNS SRV records, and it only authenticates the detected endpoints once...

2AI score
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2020/08/14 6:43 a.m.28 views

CVE-2020-15136

A flaw was found in etcd. The gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints function. No...

5.8CVSS7AI score0.01636EPSS
Exploits0References4
OSV
OSV
added 2020/08/06 11:15 p.m.31 views

CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS6.6AI score
Exploits0References3
NVD
NVD
added 2020/08/06 11:15 p.m.26 views

CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS7.2AI score0.01636EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/08/06 11:15 p.m.260 views

CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS6.7AI score0.01636EPSS
Exploits0References3
Rows per page
Query Builder