Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: gssntlmssp (CVE-2023-25566)

The version of gssntlmssp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25566 advisory. - GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to...

7.5CVSS5.7AI score0.01103EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: gssntlmssp (CVE-2023-25563)

The version of gssntlmssp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25563 advisory. - GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to...

7.5CVSS6AI score0.01091EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: gssntlmssp (CVE-2023-25565)

The version of gssntlmssp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25565 advisory. - GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to...

7.5CVSS5.7AI score0.01103EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.9 views

Azure Linux 3.0 Security Update: gssntlmssp (CVE-2023-25567)

The version of gssntlmssp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25567 advisory. - GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of...

7.5CVSS5.7AI score0.01103EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: gssntlmssp (CVE-2023-25564)

The version of gssntlmssp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25564 advisory. - GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to...

8.2CVSS6AI score0.01942EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.10 views

MiracleLinux 8 : gssntlmssp-1.2.0-1.el8.ML.1 (AXSA:2023-6149:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6149:01 advisory. gssntlmssp: multiple out-of-bounds read when decoding NTLM fields CVE-2023-25563 gssntlmssp: memory corruption when decoding UTF16 strings...

8.2CVSS5.7AI score0.01942EPSS
Exploits0References6
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.6 views

CVE-2023-25565 affecting package gssntlmssp for versions less than 1.3.1-1

CVE-2023-25565 affecting package gssntlmssp for versions less than 1.3.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01103EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.6 views

CVE-2023-25563 affecting package gssntlmssp for versions less than 1.3.1-1

CVE-2023-25563 affecting package gssntlmssp for versions less than 1.3.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01091EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.6 views

CVE-2023-25564 affecting package gssntlmssp for versions less than 1.3.1-1

CVE-2023-25564 affecting package gssntlmssp for versions less than 1.3.1-1. An upgraded version of the package is available that resolves this issue...

8.2CVSS6.9AI score0.01942EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.6 views

CVE-2023-25566 affecting package gssntlmssp for versions less than 1.3.1-1

CVE-2023-25566 affecting package gssntlmssp for versions less than 1.3.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01103EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.4 views

CVE-2023-25567 affecting package gssntlmssp for versions less than 1.3.1-1

CVE-2023-25567 affecting package gssntlmssp for versions less than 1.3.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01103EPSS
Exploits0
OSV
OSV
added 2024/09/16 11:43 a.m.6 views

RHSA-2023:3097 Red Hat Security Advisory: gssntlmssp security update

Bulletin has no description...

7.5CVSS7.5AI score0.01942EPSS
Exploits0References28
OSV
OSV
added 2024/06/15 12:0 a.m.8 views

OPENSUSE-SU-2024:12701-1 gssntlmssp-1.2.0-1.1 on GA media

These are all security issues fixed in the gssntlmssp-1.2.0-1.1 package on the GA media of openSUSE Tumbleweed...

8.2CVSS7.8AI score0.01942EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.15 views

openSUSE: Security Advisory for gssntlmssp (openSUSE-SU-2023:0048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.8AI score0.01942EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/05/24 12:0 a.m.13 views

gssntlmssp security update

1.2.0-1 - New release 1.2.0 - Fix CVE-2023-25563: multiple out-of-bounds read when decoding NTLM fields - Fix CVE-2023-25564: memory corruption when decoding UTF16 strings - Fix CVE-2023-25565: incorrect free when decoding target information - Fix CVE-2023-25566: memory leak when parsing username...

8.2CVSS7.3AI score0.01942EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/16 10:7 a.m.8 views

gssntlmssp: incorrect free when decoding target information

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. An incorrect free when decoding target information can trigger a denial of service. The error condition incorrectly assumes the cb and sh buffers contain a copy of the data that needs to...

7.5CVSS5.7AI score0.01103EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 10:7 a.m.16 views

Moderate: Red Hat Security Advisory: gssntlmssp security update

An update for gssntlmssp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.2CVSS7.2AI score0.01942EPSS
Exploits0References6
OSV
OSV
added 2023/05/16 12:0 a.m.12 views

ALSA-2023:3097 Moderate: gssntlmssp security update

The gssntlmssp is a GSSAPI NTLM mechanism that allows to perform NTLM authentication in GSSAPI programs. Security Fixes: gssntlmssp: multiple out-of-bounds read when decoding NTLM fields CVE-2023-25563 gssntlmssp: memory corruption when decoding UTF16 strings CVE-2023-25564 gssntlmssp: incorrect...

8.2CVSS7.1AI score0.01942EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.28 views

RHEL 8 : gssntlmssp (RHSA-2023:3097)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:3097 advisory. The gssntlmssp is a GSSAPI NTLM mechanism that allows to perform NTLM authentication in GSSAPI programs. Security Fixes: gssntlmssp: multipl...

8.2CVSS7.7AI score0.01942EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.10 views

Mageia: Security Advisory (MGASA-2023-0108)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.7AI score0.01942EPSS
Exploits0References4
Rows per page
Query Builder