Lucene search
K

502 matches found

RedHat Linux
RedHat Linux
added 2023/11/07 8:49 a.m.44 views

Moderate: Red Hat Security Advisory: krb5 security and bug fix update

An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

8.8CVSS6.9AI score0.02107EPSS
Exploits0References8
OSV
OSV
added 2023/11/07 12:0 a.m.27 views

ALSA-2023:6699 Moderate: krb5 security and bug fix update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

8.8CVSS7.2AI score0.02107EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2023/11/07 12:0 a.m.38 views

Moderate: krb5 security and bug fix update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

8.8CVSS7.3AI score0.02107EPSS
Exploits0References6
OSV
OSV
added 2023/10/03 1:15 a.m.3 views

CVE-2023-42771

Authentication bypass vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent unauthenticated attacker who can access the affected product to download configuration files and/or log files, and upload configuration files...

8.8CVSS5.8AI score0.00332EPSS
Exploits0References2
NCSC
NCSC
added 2023/09/12 12:0 a.m.5 views

Vulnerabilities fixed in Microsoft Exchange

Microsoft has fixed vulnerabilities in Exchange. A malicious party can exploit the vulnerabilities to impersonate as another user and use their privileges to execute arbitrary code be able to execute arbitrary code or gain access to sensitive data. For successful abuse, the malicious party must b...

8CVSS7.3AI score0.81713EPSS
Exploits1
CNNVD
CNNVD
added 2023/09/06 12:0 a.m.5 views

TP-LINK Archer C7 OS Command Injection Vulnerability

The TP-LINK Archer C7 is a wireless router from China P&L TP-LINK. A security vulnerability exists in firmware versions prior to TP-LINK Archer C7JPV2230602, and firmware versions prior to Archer C55JPV1230506, which stems from a vulnerability that could allow a network-adjacent authenticated...

8CVSS7.1AI score0.0035EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2023/08/31 4:54 p.m.47 views

krb5 bug fix update

An update is available for krb5. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.17 views

FreeBSD : FreeBSD -- Network authentication attack via pam_krb5 (9b0d9832-47c1-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9b0d9832-47c1-11ee-8e38-002590c1f29c advisory. - pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-grantin...

9.8CVSS8.3AI score0.01098EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.22 views

FreeBSD : FreeBSD -- Network authentication attack via pam_krb5 (41af0277-47bf-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 41af0277-47bf-11ee-8e38-002590c1f29c advisory. - pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-grantin...

9.8CVSS8.3AI score0.01098EPSS
Exploits0References2
Fedora
Fedora
added 2023/08/10 12:43 a.m.32 views

[SECURITY] Fedora 38 Update: krb5-1.21-3.fc38

Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form...

8.8CVSS7.1AI score0.01229EPSS
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2023/08/01 12:0 a.m.12 views

FreeBSD-SA-23:09.pam_krb5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:09.pamkrb5 Security Advisory The FreeBSD Project Topic: Network authentication attack via pamkrb5 Category: core Module: pamkrb5 Announced: 2023-08-01...

9.8CVSS7.2AI score0.01098EPSS
Exploits0
FreeBSD
FreeBSD
added 2023/08/01 12:0 a.m.21 views

FreeBSD -- Network authentication attack via pam_krb5

Problem Description: The problem detailed in FreeBSD-SA-23:04.pamkrb5 persisted following the patch for that advisory. Impact: The impact described in FreeBSD-SA-23:04.pamkrb5 persists...

9.8CVSS7.1AI score0.01098EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/06/27 3:15 p.m.4 views

Important: Red Hat Enhancement Advisory: krb5 bug fix update

An update for krb5 is now available for Red Hat Enterprise Linux 8. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to...

8.8CVSS6.9AI score0.06419EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/06/22 4:37 p.m.21 views

CVE-2023-3326 Network authentication attack via pam_krb5

pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pamkrb5 has no way to validate...

7.1AI score0.01098EPSS
Exploits0References3
FreeBSD Advisory
FreeBSD Advisory
added 2023/06/21 12:0 a.m.17 views

FreeBSD-SA-23:04.pam_krb5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:04.pamkrb5 Security Advisory The FreeBSD Project Topic: Network authentication attack via pamkrb5 Category: core Module: pamkrb5 Announced: 2023-06-21...

9.8CVSS7.2AI score0.01098EPSS
Exploits0
FreeBSD
FreeBSD
added 2023/06/21 12:0 a.m.23 views

FreeBSD -- Network authentication attack via pam_krb5

Problem Description: pamkrb5 authenticates the user by essentially running kinit1 with the password, getting a ticket-granting ticket' tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. Normally, the system running the pamkrb5 module will also hav...

9.8CVSS7.3AI score0.01098EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/09 10:11 a.m.44 views

Moderate: Red Hat Security Advisory: krb5 security, bug fix, and enhancement update

An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9CVSS6.8AI score0.13794EPSS
Exploits0References14
OSV
OSV
added 2023/05/09 12:0 a.m.35 views

ALSA-2023:2570 Moderate: krb5 security, bug fix, and enhancement update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

9CVSS8.2AI score0.13794EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/04/14 12:0 a.m.6 views

The vulnerability of the NTLM network authentication protocol for Windows operating systems allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the NTLM network authentication protocol for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent security restrictions and enhance their privileges...

7.8CVSS7.3AI score0.00448EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.5 views

The vulnerability of the NTLM network authentication protocol for Windows operating systems allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the NTLM network authentication protocol for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent security restrictions and enhance their privileges...

7.8CVSS7.3AI score0.02517EPSS
Exploits1References6
Rows per page
Query Builder