Lucene search
K

17 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/13 9:11 a.m.1 views

CVE-2026-35337

Deserialization of Untrusted Data vulnerability in Apache Storm. Versions Affected: before 2.8.6. Description: When processing topology credentials submitted via the Nimbus Thrift API, Storm deserializes the base64-encoded TGT blob using ObjectInputStream.readObject without any class filtering or...

6.4AI score0.01011EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-0046

Malware in sbrugna...

3.7CVSS6.1AI score0.00686EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2025/08/09 12:23 a.m.7 views

CVE-2025-54882

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0, Himmelblau stores the cloud TGT received during logon in the Kerberos credential cache. The created credential cache collection and received credentials...

7.1CVSS6.2AI score0.00196EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:59 a.m.4 views

CVE-2025-24034

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Starting in version 0.7.0 and prior to versions 0.7.15 and 0.8.3, Himmelblau is vulnerable to leaking credentials in debug logs. When debug logging is enabled, user access tokens are inadvertently logged, potentially...

3.2CVSS6.9AI score0.00195EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 5:15 p.m.3 views

DEBIAN-CVE-2023-3326

pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pamkrb5 has no way to validate...

9.8CVSS8.5AI score0.01098EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 5:15 p.m.15 views

UBUNTU-CVE-2023-3326

pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pamkrb5 has no way to validate...

9.8CVSS5.8AI score0.01098EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/06/22 4:37 p.m.21 views

CVE-2023-3326 Network authentication attack via pam_krb5

pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pamkrb5 has no way to validate...

7.1AI score0.01098EPSS
Exploits0References3
Metasploit
Metasploit
added 2023/01/27 7:49 p.m.713 views

Active Directory Certificate Services (ADCS) privilege escalation (Certifried)

This module exploits a privilege escalation vulnerability in Active Directory Certificate Services ADCS to generate a valid certificate impersonating the Domain Controller DC computer account. This certificate is then used to authenticate to the target as the DC account using PKINIT...

9CVSS7.4AI score0.83277EPSS
Exploits8
Metasploit
Metasploit
added 2023/01/27 7:49 p.m.340 views

Kerberos TGT/TGS Ticket Requester

This module requests TGT/TGS Kerberos tickets from the KDC Module Options msf use auxiliary/admin/kerberos/getticket msf auxiliarygetticket show actions ...actions... msf auxiliarygetticket set ACTION msf auxiliarygetticket show options ...show and set options... msf auxiliarygetticket run This...

5.3AI score
Exploits0
OSV
OSV
added 2020/02/11 10:15 p.m.4 views

CVE-2020-0665

An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default setting that lets an attacker in the trusting forest request delegation of a TGT for an identity from the trusted forest, aka 'Active Directory Elevation of Privilege Vulnerability'...

8.1CVSS7.1AI score0.04382EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2010/06/01 12:0 a.m.31 views

CentOS 5 : krb5 (CESA-2010:0343)

Updated krb5 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.5CVSS5.9AI score0.05469EPSS
Exploits1References3
Prion
Prion
added 2010/02/10 6:30 p.m.16 views

Null pointer dereference

The Key Distribution Center KDC in Kerberos in Microsoft Windows 2000 SP4, Server 2003 SP2, and Server 2008 Gold and SP2, when a trust relationship with a non-Windows Kerberos realm exists, allows remote authenticated users to cause a denial of service NULL pointer dereference and domain controll...

6.3CVSS6.5AI score0.17432EPSS
Exploits0References3
NVD
NVD
added 2010/01/14 6:30 p.m.24 views

CVE-2010-0014

System Security Services Daemon SSSD before 1.0.1, when the krb5 authprovider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting...

3.7CVSS6.8AI score0.00686EPSS
Exploits2References4
OSV
OSV
added 2010/01/14 6:30 p.m.9 views

CVE-2010-0014

System Security Services Daemon SSSD before 1.0.1, when the krb5 authprovider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting...

6.7AI score
Exploits0References4
OSV
OSV
added 2010/01/14 6:30 p.m.2 views

DEBIAN-CVE-2010-0014

System Security Services Daemon SSSD before 1.0.1, when the krb5 authprovider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting...

3.7CVSS7.2AI score0.00686EPSS
Exploits2References1
Debian CVE
Debian CVE
added 2010/01/14 6:0 p.m.27 views

CVE-2010-0014

System Security Services Daemon SSSD before 1.0.1, when the krb5 authprovider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting...

3.7CVSS5.9AI score0.00686EPSS
Exploits2
Exploit DB
Exploit DB
added 2000/08/28 12:0 a.m.23 views

Kerberos 4 4.0/5 5.0 - KDC Spoofing

source: https://www.securityfocus.com/bid/1616/info Kerberos is a cryptographic authentication protocol that allows users of a network to access services without transmitting cleartext passwords. A common implementation of the protocol includes a login service which is vulnerable to an attack whi...

7.4AI score
Exploits0
Rows per page
Query Builder