Shodan
Vulnerabilities
Vulnerable Software
Mit:  >> Kerberos 5  >> 1.21.2  Security Vulnerabilities
CVE-2024-37371
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.
CVSS Score
9.1
EPSS Score
0.007
Published
2024-06-28
CVE-2024-37370
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-06-28
CVE-2024-26458
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
CVSS Score
5.3
EPSS Score
0.002
Published
2024-02-29
CVE-2024-26461
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-02-29
CVE-2024-26462
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-02-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved