CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2002-0651

Malware in sbrugna...

7.5CVSS6AI score0.03678EPSS

Exploits0References11

Cvelist•added 2025/09/16 2:38 p.m.•4 views

CVE-2025-36244 IBM AIX privilege escalation

IBM AIX 7.2, 7.3, IBM VIOS 3.1, and 4.1, when configured to use Kerberos network authentication, could allow a local user to write to files on the system with root privileges due to improper initialization of critical variables...

7.4CVSS0.0001EPSS

Exploits0References1

Tenable Nessus•added 2022/11/15 12:0 a.m.•20 views

FreeBSD : krb5 -- Integer overflow vulnerabilities in PAC parsing (094e4a5b-6511-11ed-8c5e-206a8a720317)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 094e4a5b-6511-11ed-8c5e-206a8a720317 advisory. - The Kerberos libraries used by Samba provide a mechanism for authenticating a user or service by mean...

8.8CVSS6.9AI score0.10832EPSS

Exploits1References3

OSV•added 2022/05/17 2:54 a.m.•2 views

GHSA-PXV5-5VMP-3JJ4 Improper Authentication in Apache Hadoop

The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information by forcing a downgrade ...

3.2CVSS5.9AI score0.00125EPSS

Exploits0References5

CNVD•added 2017/07/11 12:0 a.m.•3 views

Apache Impala Authentication Bypass Vulnerability

Apache Impala is an open source distributed SQL query engine for Apache Hadoop. When Apache Impala is Kerberos-enabled, a malicious process emulates the Impala backend program, allowing attackers to exploit vulnerabilities to submit special requests, bypass authentication, and perform unauthorize...

9.8CVSS9.9AI score0.01296EPSS

Exploits1References1

Positive Technologies•added 2010/03/05 12:0 a.m.•6 views

PT-2010-1086 · Openssl +2 · Openssl +2

Name of the Vulnerable Software and Affected Versions: OpenSSL versions prior to 0.9.8n OpenSSL versions prior to 1.0.0e Description: The issue is related to the kssl keytab is available function in OpenSSL, which, when Kerberos is enabled but Kerberos configuration files cannot be opened, does n...

10CVSS7.8AI score0.32487EPSS

Exploits24References92

Symantec•added 2005/08/09 12:0 a.m.•13 views

Microsoft Windows Kerberos PKINIT Man In The Middle Vulnerability

Description The PKINIT implementation in Microsoft Windows is susceptible to a man in the middle vulnerability. This issue is due to a failure of the software to properly validate network data. This issue is only exploitable by attackers that have access to valid logon credentials. Attackers...

0.1AI score

Exploits0References1Affected Software3