Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-7993

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prototype 1.6.0.1 allows remote authenticated users to forge ticket creation on behalf of other user accounts via a modified email ID field. CVE-2020-7993 Note...

4.3CVSS6AI score0.00209EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2014-5351

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The kadm5randkeyprincipal3 function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 before 1.13 sends old keys in a response to a -randkey...

2.1CVSS6.7AI score0.00348EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.11 views

RHEL 7 : krb5 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - krb5: Buffer overflow in getmatchingdata CVE-2017-15088 - Kerberos: delegation constrain bypass in...

7.5CVSS8.7AI score0.25552EPSS
Exploits0References8
Metasploit
Metasploitadded 2023/01/27 7:49 p.m.143 views

Kerberos Silver/Golden/Diamond/Sapphire Ticket Forging

This module forges a Kerberos ticket. Four different techniques can be used: - Silver ticket: Using a service account hash, craft a ticket impersonating any user and privileges to that account. - Golden ticket: Using the krbtgt hash, craft a ticket impersonating any user and privileges. - Diamond...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2015/02/11 12:0 a.m.29 views

Ubuntu 14.04 LTS : Kerberos vulnerabilities (USN-2498-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2498-1 advisory. It was discovered that Kerberos incorrectly sent old keys in response to a -randkey -keepold request. An authenticated remote attacker could use this iss...

9CVSS7.6AI score0.05407EPSS
Exploits0References8
OSV
OSVadded 2015/01/21 10:7 a.m.6 views

SUSE-SU-2015:0290-1 Security update for krb5

MIT kerberos krb5 was updated to fix several security issues and bugs. Security issues fixed: CVE-2014-5351: The kadm5randkeyprincipal3 function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 sent old keys in a response to a -randkey -keepold request, which allowed remote...

9CVSS6.6AI score0.05407EPSS
Exploits0References9
CVE
CVEadded 2014/10/10 1:0 a.m.81 views

CVE-2014-5351

CVE-2014-5351 affects MIT Kerberos 5 (krb5) kadmind: the kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c sends old keys in response to a -randkey -keepold request, enabling remote authenticated users to forge tickets by leveraging administrative access. Affected: krb5

2.1CVSS6AI score0.00348EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder