Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5231 matches found

Veracode
Veracodeadded 2020/11/24 10:12 a.m.48 views

Denial Of Service

krb5is vulnerable to denial of service. The vulnerability exists because lib/krb5/asn.1/asn1encode.c support for indefinite length allows for an unbounded recursion...

7.5CVSS4AI score0.00955EPSS
Exploits0References19Affected Software1
Tenable Nessus
Tenable Nessusadded 2020/11/23 12:0 a.m.38 views

Debian DSA-4795-1 : krb5 - security update

Demi Obeneour discovered that unbounded recursion in the ASN1 parser of libkrb5 could result in denial of service. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4795. The text itself is copyright C Software...

7.5CVSS7.5AI score0.00955EPSS
Exploits0References4
OpenVAS
OpenVASadded 2020/11/23 12:0 a.m.7 views

Debian: Security Advisory (DSA-4795-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.00955EPSS
Exploits0References4
Debian
Debianadded 2020/11/21 6:19 p.m.133 views

[SECURITY] [DSA 4795-1] krb5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4795-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 21, 2020 https://www.debian.org/security/faq -...

7.5CVSS7.8AI score0.00955EPSS
Exploits0
OSV
OSVadded 2020/11/19 8:30 a.m.4 views

SUSE-SU-2020:3379-1 Security update for krb5

This update for krb5 fixes the following security issue: - CVE-2020-28196: Fixed an unbounded recursion via an ASN.1-encoded Kerberos message bsc1178512...

7.5CVSS7.7AI score0.00955EPSS
Exploits0References3
OSV
OSVadded 2020/11/19 8:28 a.m.7 views

SUSE-SU-2020:3375-1 Security update for krb5

This update for krb5 fixes the following security issue: - CVE-2020-28196: Fixed an unbounded recursion via an ASN.1-encoded Kerberos message bsc1178512...

7.5CVSS7.7AI score0.00955EPSS
Exploits0References3
OSV
OSVadded 2020/11/06 2:15 p.m.14 views

CVE-2020-26883

In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents...

7.5CVSS6.9AI score0.00526EPSS
Exploits0References2
NVD
NVDadded 2020/11/06 2:15 p.m.5 views

CVE-2020-26883

In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents...

7.5CVSS7.5AI score0.00526EPSS
Exploits0References2
CVE
CVEadded 2020/11/06 1:21 p.m.72 views

CVE-2020-26883

Play Framework versions 2.6.0–2.8.2 contain a vulnerability caused by unbounded recursion during JSON parsing (notably in fromJson in form.scala per Veracode). This can lead to stack depletion/DoS via crafted JSON sent over the network. Affected components: Play Framework JSON parsing pathway; ro...

7.5CVSS7.5AI score0.00526EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2020/11/06 8:15 a.m.11 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.6AI score0.00955EPSS
Exploits0References14
OSV
OSVadded 2020/11/06 8:15 a.m.1 views

DEBIAN-CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7AI score0.00955EPSS
Exploits0References1
OSV
OSVadded 2020/11/06 8:15 a.m.1 views

ALPINE-CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7AI score0.00955EPSS
Exploits0References1
OSV
OSVadded 2020/11/06 8:15 a.m.24 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.5AI score
Exploits0References14
OSV
OSVadded 2020/11/06 8:15 a.m.1 views

UBUNTU-CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS6.9AI score0.00955EPSS
Exploits0References4
Prion
Prionadded 2020/11/06 8:15 a.m.28 views

Code injection

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

5CVSS7.4AI score0.00955EPSS
Exploits0References14Affected Software6
UbuntuCve
UbuntuCveadded 2020/11/06 8:15 a.m.30 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS6.9AI score0.00955EPSS
Exploits0References3
Cvelist
Cvelistadded 2020/11/06 7:7 a.m.20 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.7AI score0.00955EPSS
Exploits0References14
AlpineLinux
AlpineLinuxadded 2020/11/06 7:7 a.m.30 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

7.5CVSS7.9AI score0.00955EPSS
Exploits0
CVE
CVEadded 2020/11/06 7:7 a.m.611 views

CVE-2020-28196

CVE-2020-28196 affects MIT Kerberos 5 (krb5) prior to 1.17.2 and 1.18.x prior to 1.18.3. The vulnerability stems from unbounded recursion in the ASN.1 BER decoder (lib/krb5/asn.1/asn1_encode.c) due to no recursion limit for indefinite lengths. This can lead to denial of service due to resource ex...

7.5CVSS7.6AI score0.00955EPSS
Exploits0References14Affected Software1
Vulnrichment
Vulnrichmentadded 2020/11/06 7:7 a.m.1 views

CVE-2020-28196

MIT Kerberos 5 aka krb5 before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1encode.c support for BER indefinite lengths lacks a recursion limit...

8.7AI score0.00955EPSS
Exploits0References14
Rows per page
Query Builder