Lucene search
+L

51 matches found

Mageia
Mageia
added 2024/07/03 4:36 p.m.44 views

Updated krb5 packages fix security vulnerabilities

Before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application. CVE-2024-37370 Before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References1
Veracode
Veracode
added 2024/07/01 11:0 a.m.25 views

Plaintext Modification

libkrb5.so is vulnerable to a Plaintext Modification attack. The vulnerability is due to improper modifications in the plaintext Extra Count field of a confidential GSS krb5 wrap token, allowing an attacker to make an unwrapped token appear truncated to the application...

7.5CVSS6.5AI score0.00748EPSS
Exploits0References4Affected Software2
SUSE CVE
SUSE CVE
added 2024/06/28 11:17 p.m.2 views

SUSE CVE-2024-37370

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.4CVSS8.7AI score0.00748EPSS
Exploits0References14
OSV
OSV
added 2024/06/28 10:15 p.m.6 views

AZL-42991 CVE-2024-37370 affecting package krb5 for versions less than 1.19.4-3

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS7AI score0.00748EPSS
Exploits0References1
OSV
OSV
added 2024/06/28 10:15 p.m.3 views

ALPINE-CVE-2024-37370

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS6.9AI score0.00748EPSS
Exploits0References1
OSV
OSV
added 2024/06/28 10:15 p.m.3 views

DEBIAN-CVE-2024-37370

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS7.1AI score0.00748EPSS
Exploits0References1
OSV
OSV
added 2024/06/28 10:15 p.m.7 views

AZL-43002 CVE-2024-37370 affecting package krb5 for versions less than 1.21.3-1

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS6.8AI score0.00748EPSS
Exploits0References1
OSV
OSV
added 2024/06/28 10:15 p.m.8 views

UBUNTU-CVE-2024-37370

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS6.9AI score0.00748EPSS
Exploits0References4
CVE
CVE
added 2024/06/28 12:0 a.m.220 views

CVE-2024-37370

Summary: CVE-2024-37370 affects MIT Kerberos 5 (krb5) before 1.21.3. An attacker can modify the plaintext Extra Count field in a confidential GSS wrap token, causing the unwrapped token to appear truncated to the application. The issue is tied to krb5’s GSS token handling and can impact confident...

7.5CVSS6.8AI score0.00748EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/06/28 12:0 a.m.26 views

CVE-2024-37370

In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application...

7.5CVSS6.5AI score0.00748EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.5 views

PT-2024-6104 · Mit +10 · Mit Kerberos 5 +10

Name of the Vulnerable Software and Affected Versions: MIT Kerberos 5 versions prior to 1.21.3 Description: The issue is related to the modification of the plaintext Extra Count field of a confidential GSS krb5 wrap token. This can cause the unwrapped token to appear truncated to the application,...

9.1CVSS7.6AI score0.01863EPSS
Exploits0References102
Rows per page
Query Builder