Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/04/13 2:33 p.m.1 views

JLSEC-2026-93

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS5.8AI score0.00748EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2025/10/07 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: krb5 (UTSA-2025-986177)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986177 advisory. In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token t...

7.5CVSS6.8AI score0.00748EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/10/09 12:0 a.m.19 views

EulerOS 2.0 SP12 : krb5 (EulerOS-SA-2024-2506)

According to the versions of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens wit...

9.1CVSS7.3AI score0.01863EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2024/09/03 4:51 p.m.4 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2024/08/20 4:13 p.m.3 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

7.5CVSS7.2AI score0.00748EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/07/23 3:32 p.m.2 views

krb5: GSS message token handling

A vulnerability was found in the MIT Kerberos 5 GSS krb5 wrap token, where an attacker can modify the plaintext Extra Count field, causing the unwrapped token to appear truncated to the application, occurs when the attacker alters the token data during transmission which can lead to improper...

7.5CVSS7.2AI score0.00748EPSS
Exploits0References5
Veracode
Veracodeadded 2024/07/01 11:0 a.m.21 views

Plaintext Modification

libkrb5.so is vulnerable to a Plaintext Modification attack. The vulnerability is due to improper modifications in the plaintext Extra Count field of a confidential GSS krb5 wrap token, allowing an attacker to make an unwrapped token appear truncated to the application...

7.5CVSS6.5AI score0.00748EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder