Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.9 views

CVE-2020-7196

The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. Specifically, they display the kdcadminpassword in the source file of the u...

6.5CVSS6.8AI score0.0085EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-3467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian-edu-config all versions 2.11.10, a set of configuration files used for Debian Edu, and debian- lan-config 0.26, configured too permissive ACLs for the...

7.8CVSS7.3AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2020/10/26 4:15 p.m.3 views

CVE-2020-7196

The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. Specifically, they display the kdcadminpassword in the source file of the u...

6.5CVSS6.6AI score0.0085EPSS
Exploits0References1
OSV
OSV
added 2019/12/23 7:15 p.m.9 views

CVE-2019-3467

Debian-edu-config all versions 2.11.10, a set of configuration files used for Debian Edu, and debian-lan-config 0.26, configured too permissive ACLs for the Kerberos admin server, which allowed password changes for other Kerberos user principals...

7.8CVSS7.5AI score0.00503EPSS
Exploits1References10
OSV
OSV
added 2011/04/15 12:55 a.m.5 views

CVE-2011-0285

The processchpwrequest function in schpw.c in the password-changing functionality in kadmind in MIT Kerberos 5 aka krb5 1.7 through 1.9 frees an invalid pointer, which allows remote attackers to execute arbitrary code or cause a denial of service daemon crash via a crafted request that triggers a...

7.4AI score
Exploits0References19
RedHat Linux
RedHat Linux
added 2008/09/10 6:8 p.m.22 views

Important: Red Hat Security Advisory: ipa security update

Updated ipa packages that fix a security flaw are now available for Red Hat Enterprise IPA. This update has been rated as having important security impact by the Red Hat Security Response Team. Red Hat Enterprise IPA is an integrated solution to provide centrally-managed Identity machines, users,...

5CVSS5.6AI score0.01843EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2007/11/19 12:0 a.m.49 views

openssh security and bug fix update

4.3p2-24 - fixed audit log injection problem CVE-2007-3102 248059 4.3p2-23 - document where the nss certificate and token dbs are looked for 4.3p2-22 - experimental support for PKCS11 tokens through libnss3 183423 4.3p2-21 - fix an information leak in Kerberos password authentication CVE-2006-505...

5CVSS1.4AI score0.02801EPSS
Exploits0
OSV
OSV
added 2004/12/31 5:0 a.m.6 views

CVE-2004-1189

The addtohistory function in svrprincipal.c in libkadm5srv for MIT Kerberos 5 krb5 up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow...

7.4AI score
Exploits0References20
Rows per page
Query Builder