Lucene search
K

20 matches found

RedHat Linux
RedHat Linux
added 2025/11/20 8:5 a.m.6 views

python-kdcproxy: Unauthenticated SSRF via Realm‑Controlled DNS SRV

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS5.9AI score0.00447EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 6:1 p.m.14 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/11/12 4:35 p.m.8 views

CVE-2025-59088

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS8.1AI score0.00447EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17772

Malicious code in bioql PyPI...

8.1CVSS9.1AI score0.13548EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-20620

Malicious code in bioql PyPI...

8.1CVSS6.5AI score0.01061EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/10 5:18 p.m.7 views

CVE-2025-49735

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS7AI score0.01061EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 5:16 p.m.8 views

CVE-2025-49735

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS0.01061EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 4:57 p.m.13 views

CVE-2025-49735 Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

...

8.1CVSS7.2AI score0.01061EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 4:57 p.m.66 views

CVE-2025-49735

CVE-2025-49735 describes a use-after-free vulnerability in Windows KDC Proxy Service (KPSSVC) that could allow remote code execution over the network. The entry is publicly tracked with a Network attack vector, high impact on confidentiality, integrity, and availability (CVSS v3.1 base score 8.1)...

8.1CVSS7.3AI score0.01061EPSS
Exploits0References1Affected Software6
Cvelist
Cvelist
added 2025/07/08 4:57 p.m.15 views

CVE-2025-49735 Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

...

8.1CVSS0.01061EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/07/08 2:0 p.m.6 views

Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS7.4AI score0.01061EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.7 views

PT-2025-28622

Name of the Vulnerable Software and Affected Versions: Windows KDC Proxy Service KPSSVC affected versions not specified Description: The issue is related to a use after free condition in the Windows KDC Proxy Service, allowing an unauthorized attacker to execute code over a network. This enables...

8.1CVSS6.3AI score0.01061EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.8 views

The vulnerability of the KDC Proxy Service (KPSSVC) on Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the KDC Proxy Service KPSSVC on Microsoft Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.1CVSS8.4AI score0.13548EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/12 5:5 p.m.7 views

CVE-2025-33071

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS8.6AI score0.13548EPSS
Exploits0References1
NVD
NVD
added 2025/06/10 5:22 p.m.13 views

CVE-2025-33071

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS0.13548EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 5:2 p.m.8 views

CVE-2025-33071 Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

...

8.1CVSS7.2AI score0.13548EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 5:2 p.m.93 views

CVE-2025-33071 Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

...

8.1CVSS0.13548EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 5:2 p.m.99 views

CVE-2025-33071

CVE-2025-33071 is an RCE flaw affecting the Windows KDC Proxy Service (KPSSVC). The vulnerability arises from a use-after-free in KPSSVC, enabling a remote attacker to execute code over the network on affected Windows systems. The CVE is rated high severity (CVSS ~8.1/8.1–8.10, depending on sourc...

8.1CVSS8.5AI score0.13548EPSS
Exploits0References1Affected Software6
Microsoft CVE
Microsoft CVE
added 2025/06/10 7:0 a.m.8 views

Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS8AI score0.13548EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.6 views

PT-2025-24856

Name of the Vulnerable Software and Affected Versions Windows KDC Proxy Service KPSSVC affected versions not specified Description The issue allows an unauthorized attacker to execute code over a network due to a use after free flaw in the Windows KDC Proxy Service. This enables remote attackers ...

8.1CVSS9.6AI score0.13548EPSS
Exploits0References13
Rows per page
Query Builder