Heimdal Security Vulnerabilities and Issues — Heimdal CVE List

Lucene search

Heimdal ProjectHeimdal

8 matches found

CVE•added 2019/07/31 3:15 p.m.•451 views

CVE-2018-16860

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (p...

7.5CVSS6.2AI score0.01992EPSS

CVE•added 2023/03/06 11:15 p.m.•417 views

CVE-2022-45142

The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches (and possibly other branches) a logic inversion sneaked...

7.5CVSS7AI score0.00501EPSS

CVE•added 2022/12/26 5:15 a.m.•261 views

CVE-2021-44758

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

7.5CVSS8.1AI score0.00595EPSS

CVE•added 2019/05/15 11:29 p.m.•248 views

CVE-2019-12098

In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. This issue is in krb5_init_creds_step in lib/krb5/init_creds_pw.c.

7.4CVSS6.9AI score0.03731EPSS

CVE•added 2022/11/15 11:15 p.m.•158 views

CVE-2022-41916

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC (via PKINIT) and kinit (via PKINIT), as well as any third-party applications using Heimdal's ...

7.5CVSS7.2AI score0.00217EPSS

CVE•added 2023/03/27 10:15 p.m.•123 views

CVE-2022-3116

The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash.

7.5CVSS7.3AI score0.00165EPSS

CVE•added 2017/12/06 3:29 p.m.•84 views

CVE-2017-17439

In Heimdal through 7.4, remote unauthenticated attackers are able to crash the KDC by sending a crafted UDP packet containing empty data fields for client name or realm. The parser would unconditionally dereference NULL pointers in that case, leading to a segmentation fault. This is related to the ...

7.5CVSS7.3AI score0.09131EPSS

CVE•added 2017/08/28 7:29 p.m.•68 views

CVE-2017-6594

The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets.

7.5CVSS7.4AI score0.00249EPSS