Lucene search
K

6 matches found

openvas
openvas
added 2026/02/02 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2026-1175)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.7AI score0.00606EPSS
Exploits0References2
redhat
redhat
added 2025/11/20 5:58 a.m.15 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
osv
osv
added 2025/09/29 11:26 a.m.7 views

USN-5495-2 curl regression

USN-5495-1 fixed vulnerabilities in curl. The fix for CVE-2022-32205 miscalculated the maximum cookie size, causing a regression. This update fixes the problem. Original advisory details: Harry Sintonen discovered that curl incorrectly handled certain cookies. An attacker could possibly use this...

5.8AI score
Exploits0References2
ubuntu
ubuntu
added 2025/09/29 11:26 a.m.11 views

USN-5495-2: curl regression

USN-5495-1 fixed vulnerabilities in curl. The fix for CVE-2022-32205 miscalculated the maximum cookie size, causing a regression. This update fixes the problem. Original advisory details: Harry Sintonen discovered that curl incorrectly handled certain cookies. An attacker could possibly use this...

7.1AI score
Exploits0References1
redhat
redhat
added 2021/06/03 10:26 a.m.4 views

krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

A flaw was found in krb5. MIT Kerberos 5 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.1AI score0.04365EPSS
Exploits0References4
gentoo
gentoo
added 2020/11/16 12:0 a.m.48 views

MIT Kerberos 5: Denial of service

Background The MIT Kerberos 5 implementation provides a command line telnet client which is used for remote login via the telnet protocol. Description It was discovered that MIT Kerberos network authentication system, krb5, did not properly handle ASN.1-encoded Kerberos messages. Impact A remote...

7.5CVSS3.1AI score0.04365EPSS
Exploits0
Rows per page
Query Builder