Lucene search
Veracode Vulnerability DatabaseVERACODE:47841HistoryJul 01, 2024 - 11:00 a.m.
Plaintext Modification
2024-07-0111:00:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1
plaintext modification
libkrb5.so
vulnerability
improper modifications
extra count field
gss krb5 wrap token
unwrapped token
application software
6.5 Medium
AI Score
Confidence
Low
libkrb5.so is vulnerable to a Plaintext Modification attack. The vulnerability is due to improper modifications in the plaintext Extra Count field of a confidential GSS krb5 wrap token, allowing an attacker to make an unwrapped token appear truncated to the application
| CPE | Name | Operator | Version |
|---|---|---|---|
| libkrb5.so | le | 3.3.debug | |
| libkrb5.so | le | 3.3.debug |
Related
alpinelinux
alpinelinux
CVE-2024-37370
2024-06-28 22:15:02
ubuntucve
ubuntucve
CVE-2024-37370
2024-06-28 00:00:00
vulnrichment
vulnrichment
CVE-2024-37370
2024-06-28 00:00:00
redhatcve
redhatcve
CVE-2024-37370
2024-06-28 05:08:57
cve
cve
CVE-2024-37370
2024-06-28 22:15:02
debiancve
debiancve
CVE-2024-37370
2024-06-28 22:15:02
cvelist
cvelist
CVE-2024-37370
2024-06-28 00:00:00
nvd
nvd
CVE-2024-37370
2024-06-28 22:15:02
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2300-1)
2024-07-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2303-1)
2024-07-05 00:00:00
Mageia: Security Advisory (MGASA-2024-0253)
2024-07-04 00:00:00
nessus
nessus
SUSE SLES15 Security Update : krb5 (SUSE-SU-2024:2303-1)
2024-07-05 00:00:00
osv
osv
krb5 - security update
2024-07-05 00:00:00
mageia
mageia
Updated krb5 packages fix security vulnerabilities
2024-07-03 19:36:28