📦 Kerberos 5

Name: Kerberos 5
Author: Mit

by Mit

🔍 What is Kerberos 5?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-37371

CRITICAL CVSS 9.1 Jun 28, 2024

This vulnerability in MIT Kerberos 5 allows attackers to trigger invalid memory reads by sending specially crafted GSS message tokens with invalid length fields. This could potentially lead to denial ...

CVE-2024-37370

HIGH CVSS 7.5 Jun 28, 2024

This vulnerability in MIT Kerberos 5 allows attackers to modify the plaintext Extra Count field in GSS krb5 wrap tokens, causing applications to receive truncated unwrapped tokens. This affects all sy...

CVE-2024-26461

HIGH CVSS 7.5 Feb 29, 2024

CVE-2024-26461 is a memory leak vulnerability in Kerberos 5's GSSAPI sealing implementation that can lead to denial of service through resource exhaustion. Systems using krb5 1.21.2 for authentication...

CVE-2023-39975

HIGH CVSS 8.8 Aug 16, 2023

CVE-2023-39975 is a double-free vulnerability in MIT Kerberos 5's Key Distribution Center (KDC) that allows authenticated users to potentially execute arbitrary code or cause denial of service by trig...