Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.20 views

Ubuntu 16.04 ESM / 18.04 ESM : Kerberos vulnerability (USN-6467-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6467-1 advisory. Robert Morris discovered that Kerberos did not properly handle memory access when processing RPC data through kadmind, which could lead to the freeing...

6.5CVSS7.1AI score0.02107EPSS
Exploits0References2
OSV
OSV
added 2023/08/26 11:5 a.m.3 views

OESA-2023-1526 krb5 security update

Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. Security Fixes: lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. ...

6.5CVSS7AI score0.02107EPSS
Exploits0References2
NVD
NVD
added 2023/08/07 7:15 p.m.26 views

CVE-2023-36054

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

6.5CVSS6.5AI score0.02107EPSS
Exploits0References6
OSV
OSV
added 2023/08/07 7:15 p.m.27 views

CVE-2023-36054

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

6.5CVSS6.9AI score
Exploits0References6
Prion
Prion
added 2023/08/07 7:15 p.m.28 views

Design/Logic Flaw

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

4CVSS6.2AI score0.02107EPSS
Exploits0References6Affected Software3
Cvelist
Cvelist
added 2023/08/07 12:0 a.m.26 views

CVE-2023-36054

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

6.8AI score0.02107EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/08/07 12:0 a.m.18 views

CVE-2023-36054

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

6.6AI score0.02107EPSS
Exploits0References6
Rows per page
Query Builder