Lucene search
K

184 matches found

Tenable Nessus
Tenable Nessus
added 2021/01/20 12:0 a.m.16 views

EulerOS 2.0 SP3 : krb5 (EulerOS-SA-2021-1080)

According to the version of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References2
Mageia
Mageia
added 2021/01/14 3:13 p.m.47 views

Updated krb5 packages fix a security vulnerability

MIT Kerberos 5 aka krb5 before 1.17.2 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit CVE-2020-28196...

7.5CVSS7.8AI score0.04365EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/01/08 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2021-1029)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04365EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/04 12:0 a.m.21 views

EulerOS 2.0 SP9 : krb5 (EulerOS-SA-2021-1029)

According to the version of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/11/24 11:22 a.m.52 views

CVE-2020-28196

A flaw was found in krb5. MIT Kerberos 5 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.5AI score0.04365EPSS
Exploits0References3
OSV
OSV
added 2020/11/06 8:15 a.m.1 views

ALPINE-CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7AI score0.04365EPSS
Exploits0References1
NVD
NVD
added 2020/11/06 8:15 a.m.11 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.6AI score0.04365EPSS
Exploits0References14
OSV
OSV
added 2020/11/06 8:15 a.m.1 views

DEBIAN-CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7AI score0.04365EPSS
Exploits0References1
OSV
OSV
added 2020/11/06 8:15 a.m.27 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.5AI score
Exploits0References14
Prion
Prion
added 2020/11/06 8:15 a.m.28 views

Code injection

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

5CVSS7.4AI score0.04365EPSS
Exploits0References14Affected Software6
Cvelist
Cvelist
added 2020/08/10 7:1 p.m.23 views

CVE-2020-9243

HUAWEI Mate 30 with versions earlier than 10.1.0.150C00E136R5P3 have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service...

5.6AI score0.00469EPSS
Exploits0References1
Veracode
Veracode
added 2020/07/15 4:5 a.m.20 views

Denial Of Service (DoS)

freewvs is vulnerable to denial of service. The lack of recursion limit on os.walk allows a malicious actor to potentially cause the freewvs scan to stop due to memory exhaustion by creating a directory structure of more than 1000 nested directories...

3.3CVSS4.4AI score0.00597EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2020/07/14 10:15 p.m.19 views

CVE-2020-15101

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

4CVSS0.00597EPSS
Exploits0References2
OSV
OSV
added 2020/07/14 10:15 p.m.22 views

CVE-2020-15101

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

3.3CVSS4AI score
Exploits0References2
PyPA
PyPA
added 2020/07/14 10:15 p.m.4 views

PYSEC-2020-233

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

4CVSS6.6AI score0.00597EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/07/14 10:15 p.m.18 views

Design/Logic Flaw

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

4CVSS4.1AI score0.00597EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/07/14 10:15 p.m.3 views

CVE-2020-15101

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

4CVSS5AI score0.00597EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/07/14 9:35 p.m.23 views

CVE-2020-15101 Nested directory structure can lead to Uncontrolled Resource Consumption in freewvs

In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1...

2.8CVSS3.9AI score0.00597EPSS
Exploits0References2
CVE
CVE
added 2020/07/14 9:35 p.m.49 views

CVE-2020-15101

CVE-2020-15101 affects freewvs prior to version 0.1.1. A directory structure with more than 1000 nested directories can interrupt a freewvs scan due to Python’s recursion limit and os.walk(), potentially affecting administrators scanning directories of potentially untrusted users. The underlying ...

4CVSS3.6AI score0.00597EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/07/14 12:0 a.m.4 views

PT-2020-14185 · Python · Freewvs

Name of the Vulnerable Software and Affected Versions: freewvs versions prior to 0.1.1 Description: A directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk. This can be problematic when an administrator scans directories ...

4CVSS7.2AI score0.00597EPSS
Exploits0References8
Rows per page
Query Builder