| 0 |
| url |
VCID-11jm-yxbs-1kfj |
| vulnerability_id |
VCID-11jm-yxbs-1kfj |
| summary |
The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a kinit operation with incorrect string case for the realm, related to the is_principal_in_realm, krb5_set_error_message, krb5_ldap_get_principal, and process_as_req functions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-1527
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-11jm-yxbs-1kfj |
|
| 1 |
| url |
VCID-1nn6-mr7d-wyhk |
| vulnerability_id |
VCID-1nn6-mr7d-wyhk |
| summary |
The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 allows remote authenticated users to bypass a kadmin/* authorization check and obtain administrative access by leveraging access to a two-component principal with an initial "kadmind" substring, as demonstrated by a "ka/x" principal. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9422 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00794 |
| scoring_system |
epss |
| scoring_elements |
0.74304 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00794 |
| scoring_system |
epss |
| scoring_elements |
0.74337 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00794 |
| scoring_system |
epss |
| scoring_elements |
0.74342 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00794 |
| scoring_system |
epss |
| scoring_elements |
0.74328 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9422 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-9422
|
| risk_score |
1.1 |
| exploitability |
0.5 |
| weighted_severity |
2.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1nn6-mr7d-wyhk |
|
| 2 |
| url |
VCID-2674-wgen-1qbk |
| vulnerability_id |
VCID-2674-wgen-1qbk |
| summary |
Double free vulnerability in the init_ctx_reselect function in the SPNEGO initiator in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.10.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via network traffic that appears to come from an intended acceptor, but specifies a security mechanism different from the one proposed by the initiator. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4343 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.07384 |
| scoring_system |
epss |
| scoring_elements |
0.91864 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.07384 |
| scoring_system |
epss |
| scoring_elements |
0.91876 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.07384 |
| scoring_system |
epss |
| scoring_elements |
0.91877 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.07384 |
| scoring_system |
epss |
| scoring_elements |
0.91874 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4343 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-4343
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2674-wgen-1qbk |
|
| 3 |
| url |
VCID-2tn3-dfqx-5yc9 |
| vulnerability_id |
VCID-2tn3-dfqx-5yc9 |
| summary |
Multiple memory leaks in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (memory consumption) via a request specifying a NULL principal name. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8631 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01701 |
| scoring_system |
epss |
| scoring_elements |
0.82664 |
| published_at |
2026-06-07T12:55:00Z |
|
| 1 |
| value |
0.02635 |
| scoring_system |
epss |
| scoring_elements |
0.85985 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02635 |
| scoring_system |
epss |
| scoring_elements |
0.86006 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02635 |
| scoring_system |
epss |
| scoring_elements |
0.86009 |
| published_at |
2026-06-06T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8631 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19%252Bdeb8u4 |
|
| 2 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-8631
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2tn3-dfqx-5yc9 |
|
| 4 |
|
| 5 |
| url |
VCID-3df1-58jr-e7gv |
| vulnerability_id |
VCID-3df1-58jr-e7gv |
| summary |
plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by creating a database entry for a keyless principal, as demonstrated by a kadmin "add_principal -nokey" or "purgekeys -all" command. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5354 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.67978 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.68017 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.68025 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0054 |
| scoring_system |
epss |
| scoring_elements |
0.68014 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5354 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-5354
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3df1-58jr-e7gv |
|
| 6 |
| url |
VCID-3jcm-y59r-47a5 |
| vulnerability_id |
VCID-3jcm-y59r-47a5 |
| summary |
The process_tgs_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS request that triggers an error other than the KRB5_KDB_NOENTRY error. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1530 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76529 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76559 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76564 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76553 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1530 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-1530
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3jcm-y59r-47a5 |
|
| 7 |
| url |
VCID-3tas-mucv-aufk |
| vulnerability_id |
VCID-3tas-mucv-aufk |
| summary |
An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The pre-defined function "strlen" is getting a "NULL" string as a parameter value in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the Key Distribution Center (KDC), which allows remote authenticated users to cause a denial of service (NULL pointer dereference) via a modified kadmin client. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-5710 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00385 |
| scoring_system |
epss |
| scoring_elements |
0.60026 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00385 |
| scoring_system |
epss |
| scoring_elements |
0.60073 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00385 |
| scoring_system |
epss |
| scoring_elements |
0.60076 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00385 |
| scoring_system |
epss |
| scoring_elements |
0.60063 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-5710 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-5710
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3tas-mucv-aufk |
|
| 8 |
| url |
VCID-42rr-7ajf-eqg7 |
| vulnerability_id |
VCID-42rr-7ajf-eqg7 |
| summary |
The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (daemon crash) via a successful LDAP query with no results, as demonstrated by using an incorrect object type for a password policy. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-5353
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-42rr-7ajf-eqg7 |
|
| 9 |
| url |
VCID-4mm3-t6eu-4qde |
| vulnerability_id |
VCID-4mm3-t6eu-4qde |
| summary |
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket using an older encryption type (single-DES, triple-DES, or RC4), the attacker can crash the KDC by making an S4U2Self request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-20217 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02665 |
| scoring_system |
epss |
| scoring_elements |
0.86077 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02665 |
| scoring_system |
epss |
| scoring_elements |
0.86098 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02665 |
| scoring_system |
epss |
| scoring_elements |
0.86102 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02665 |
| scoring_system |
epss |
| scoring_elements |
0.86097 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-20217 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-20217
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4mm3-t6eu-4qde |
|
| 10 |
| url |
VCID-596a-s3un-vbbc |
| vulnerability_id |
VCID-596a-s3un-vbbc |
| summary |
The auth_gssapi_unwrap_data function in lib/rpc/auth_gssapi_misc.c in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cause a denial of service (use-after-free and double free, and daemon crash) or possibly execute arbitrary code via malformed XDR data, as demonstrated by data sent to kadmind. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9421 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.05356 |
| scoring_system |
epss |
| scoring_elements |
0.90245 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.05356 |
| scoring_system |
epss |
| scoring_elements |
0.90261 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.05356 |
| scoring_system |
epss |
| scoring_elements |
0.90259 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.05356 |
| scoring_system |
epss |
| scoring_elements |
0.90257 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9421 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-9421
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-596a-s3un-vbbc |
|
| 11 |
| url |
VCID-6jnk-3rfw-nkh8 |
| vulnerability_id |
VCID-6jnk-3rfw-nkh8 |
| summary |
MIT Kerberos 5 (aka krb5) through 1.13.1 incorrectly expects that a krb5_read_message data field is represented as a string ending with a '\0' character, which allows remote attackers to (1) cause a denial of service (NULL pointer dereference) via a zero-byte version string or (2) cause a denial of service (out-of-bounds read) by omitting the '\0' character, related to appl/user_user/server.c and lib/krb5/krb/recvauth.c. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5355 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.08201 |
| scoring_system |
epss |
| scoring_elements |
0.92352 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.08201 |
| scoring_system |
epss |
| scoring_elements |
0.92366 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.08201 |
| scoring_system |
epss |
| scoring_elements |
0.92362 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.08201 |
| scoring_system |
epss |
| scoring_elements |
0.92359 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5355 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-5355
|
| risk_score |
1.2 |
| exploitability |
0.5 |
| weighted_severity |
2.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6jnk-3rfw-nkh8 |
|
| 12 |
| url |
VCID-7wnb-bhuv-tycp |
| vulnerability_id |
VCID-7wnb-bhuv-tycp |
| summary |
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2002-2443
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7wnb-bhuv-tycp |
|
| 13 |
| url |
VCID-8fxt-3wg4-dkbb |
| vulnerability_id |
VCID-8fxt-3wg4-dkbb |
| summary |
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1529 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02376 |
| scoring_system |
epss |
| scoring_elements |
0.85263 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02376 |
| scoring_system |
epss |
| scoring_elements |
0.85287 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02376 |
| scoring_system |
epss |
| scoring_elements |
0.85292 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02376 |
| scoring_system |
epss |
| scoring_elements |
0.85286 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1529 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-1529
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8fxt-3wg4-dkbb |
|
| 14 |
| url |
VCID-at3s-18x4-n7e2 |
| vulnerability_id |
VCID-at3s-18x4-n7e2 |
| summary |
server/server_stubs.c in the kadmin protocol implementation in MIT Kerberos 5 (aka krb5) 1.10 before 1.10.1 does not properly restrict access to (1) SET_STRING and (2) GET_STRINGS operations, which might allow remote authenticated administrators to modify or read string attributes by leveraging the global list privilege. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1012 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47041 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47106 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47109 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47091 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1012 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2012-1012
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-at3s-18x4-n7e2 |
|
| 15 |
| url |
VCID-b6a9-hnjx-c3gk |
| vulnerability_id |
VCID-b6a9-hnjx-c3gk |
| summary |
The kdcpreauth modules in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.2 do not properly track whether a client's request has been validated, which allows remote attackers to bypass an intended preauthentication requirement by providing (1) zero bytes of data or (2) an arbitrary realm name, related to plugins/preauth/otp/main.c and plugins/preauth/pkinit/pkinit_srv.c. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2694
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b6a9-hnjx-c3gk |
|
| 16 |
| url |
VCID-bdmc-p544-bfg9 |
| vulnerability_id |
VCID-bdmc-p544-bfg9 |
| summary |
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service (daemon crash) via a TGS-REQ request that triggers an attempted cross-realm referral for a host-based service principal. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2013-1417
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bdmc-p544-bfg9 |
|
| 17 |
| url |
VCID-bg27-2hv6-m7cx |
| vulnerability_id |
VCID-bg27-2hv6-m7cx |
| summary |
The krb5_db2_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4, when the db2 (aka Berkeley DB) back end is used, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unspecified vectors, a different vulnerability than CVE-2011-1528. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-4151 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79281 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79308 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79313 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79305 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-4151 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-4151
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bg27-2hv6-m7cx |
|
| 18 |
| url |
VCID-bkdg-dybz-t3fy |
| vulnerability_id |
VCID-bkdg-dybz-t3fy |
| summary |
The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote attackers to cause a denial of service (listening process termination, no new connections, and lack of updates in slave KVC) via unspecified vectors. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2010-4022 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.08988 |
| scoring_system |
epss |
| scoring_elements |
0.92761 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.08988 |
| scoring_system |
epss |
| scoring_elements |
0.92774 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.08988 |
| scoring_system |
epss |
| scoring_elements |
0.92769 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.08988 |
| scoring_system |
epss |
| scoring_elements |
0.92765 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2010-4022 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2010-4022
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bkdg-dybz-t3fy |
|
| 19 |
| url |
VCID-bkqm-d2bp-f7fe |
| vulnerability_id |
VCID-bkqm-d2bp-f7fe |
| summary |
The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1416 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02274 |
| scoring_system |
epss |
| scoring_elements |
0.84961 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02274 |
| scoring_system |
epss |
| scoring_elements |
0.84985 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02274 |
| scoring_system |
epss |
| scoring_elements |
0.84989 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02274 |
| scoring_system |
epss |
| scoring_elements |
0.84983 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1416 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2013-1416
|
| risk_score |
1.0 |
| exploitability |
0.5 |
| weighted_severity |
2.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bkqm-d2bp-f7fe |
|
| 20 |
| url |
VCID-c5he-57zg-fybc |
| vulnerability_id |
VCID-c5he-57zg-fybc |
| summary |
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-5729 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00076 |
| scoring_system |
epss |
| scoring_elements |
0.23006 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.00076 |
| scoring_system |
epss |
| scoring_elements |
0.22962 |
| published_at |
2026-06-07T12:55:00Z |
|
| 2 |
| value |
0.00076 |
| scoring_system |
epss |
| scoring_elements |
0.22938 |
| published_at |
2026-06-04T12:55:00Z |
|
| 3 |
| value |
0.00076 |
| scoring_system |
epss |
| scoring_elements |
0.2302 |
| published_at |
2026-06-05T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-5729 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-5729
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c5he-57zg-fybc |
|
| 21 |
| url |
VCID-d42v-zwu4-a3ge |
| vulnerability_id |
VCID-d42v-zwu4-a3ge |
| summary |
Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 through 1.9, when the PKINIT feature is enabled, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via an e_data field containing typed data. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0284 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.2264 |
| scoring_system |
epss |
| scoring_elements |
0.9596 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.2264 |
| scoring_system |
epss |
| scoring_elements |
0.95964 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.2264 |
| scoring_system |
epss |
| scoring_elements |
0.95968 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.2264 |
| scoring_system |
epss |
| scoring_elements |
0.95969 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0284 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-0284
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d42v-zwu4-a3ge |
|
| 22 |
| url |
VCID-d53g-faqf-gfdp |
| vulnerability_id |
VCID-d53g-faqf-gfdp |
| summary |
The kdc_handle_protected_negotiation function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x before 1.9.5, and 1.10.x before 1.10.3 attempts to calculate a checksum before verifying that the key type is appropriate for a checksum, which allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized pointer free, heap memory corruption, and daemon crash) via a crafted AS-REQ request. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2012-1015
|
| risk_score |
1.2 |
| exploitability |
0.5 |
| weighted_severity |
2.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d53g-faqf-gfdp |
|
| 23 |
| url |
VCID-dbaq-qjd2-d7c9 |
| vulnerability_id |
VCID-dbaq-qjd2-d7c9 |
| summary |
The svcauth_gss_accept_sec_context function in lib/rpc/svc_auth_gss.c in MIT Kerberos 5 (aka krb5) 1.11.x through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 transmits uninitialized interposer data to clients, which allows remote attackers to obtain sensitive information from process heap memory by sniffing the network for data in a handle field. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-9423
|
| risk_score |
1.2 |
| exploitability |
0.5 |
| weighted_severity |
2.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dbaq-qjd2-d7c9 |
|
| 24 |
| url |
VCID-e1xu-a882-s3ga |
| vulnerability_id |
VCID-e1xu-a882-s3ga |
| summary |
The validate_as_request function in kdc_util.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.13.6 and 1.4.x before 1.14.3, when restrict_anonymous_to_tgt is enabled, uses an incorrect client data structure, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an S4U2Self request. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-3120
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e1xu-a882-s3ga |
|
| 25 |
| url |
VCID-ekzs-tuvp-ybfq |
| vulnerability_id |
VCID-ekzs-tuvp-ybfq |
| summary |
ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-36222 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.06615 |
| scoring_system |
epss |
| scoring_elements |
0.91366 |
| published_at |
2026-06-06T12:55:00Z |
|
| 1 |
| value |
0.06615 |
| scoring_system |
epss |
| scoring_elements |
0.91362 |
| published_at |
2026-06-07T12:55:00Z |
|
| 2 |
| value |
0.06615 |
| scoring_system |
epss |
| scoring_elements |
0.91351 |
| published_at |
2026-06-04T12:55:00Z |
|
| 3 |
| value |
0.06615 |
| scoring_system |
epss |
| scoring_elements |
0.91364 |
| published_at |
2026-06-05T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-36222 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-36222
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ekzs-tuvp-ybfq |
|
| 26 |
| url |
VCID-esm3-3qwz-cud2 |
| vulnerability_id |
VCID-esm3-3qwz-cud2 |
| summary |
The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1418 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.07674 |
| scoring_system |
epss |
| scoring_elements |
0.92046 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.07674 |
| scoring_system |
epss |
| scoring_elements |
0.92058 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.07674 |
| scoring_system |
epss |
| scoring_elements |
0.92056 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.07674 |
| scoring_system |
epss |
| scoring_elements |
0.92054 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1418 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2013-1418
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-esm3-3qwz-cud2 |
|
| 27 |
| url |
VCID-ezm2-e8zw-g7dg |
| vulnerability_id |
VCID-ezm2-e8zw-g7dg |
| summary |
The pkinit_server_return_padata function in plugins/preauth/pkinit/pkinit_srv.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 attempts to find an agility KDF identifier in inappropriate circumstances, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted Draft 9 request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1016 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00643 |
| scoring_system |
epss |
| scoring_elements |
0.71018 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00643 |
| scoring_system |
epss |
| scoring_elements |
0.7106 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00643 |
| scoring_system |
epss |
| scoring_elements |
0.71067 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00643 |
| scoring_system |
epss |
| scoring_elements |
0.71051 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1016 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2012-1016
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ezm2-e8zw-g7dg |
|
| 28 |
| url |
VCID-f343-u3jt-pkfy |
| vulnerability_id |
VCID-f343-u3jt-pkfy |
| summary |
MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4341 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.14451 |
| scoring_system |
epss |
| scoring_elements |
0.94559 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.14451 |
| scoring_system |
epss |
| scoring_elements |
0.94567 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.14451 |
| scoring_system |
epss |
| scoring_elements |
0.94569 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.14451 |
| scoring_system |
epss |
| scoring_elements |
0.9457 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4341 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-4341
|
| risk_score |
1.1 |
| exploitability |
0.5 |
| weighted_severity |
2.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f343-u3jt-pkfy |
|
| 29 |
| url |
VCID-fcy5-mv1a-n7dh |
| vulnerability_id |
VCID-fcy5-mv1a-n7dh |
| summary |
The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1.14 allows remote authenticated users to cause a denial of service (out-of-bounds read and KDC crash) via an initial '\0' character in a long realm field within a TGS request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2697 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.05447 |
| scoring_system |
epss |
| scoring_elements |
0.90342 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.05447 |
| scoring_system |
epss |
| scoring_elements |
0.90357 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.05447 |
| scoring_system |
epss |
| scoring_elements |
0.90356 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.05447 |
| scoring_system |
epss |
| scoring_elements |
0.90354 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2697 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19%252Bdeb8u4 |
|
| 2 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2697
|
| risk_score |
1.7 |
| exploitability |
0.5 |
| weighted_severity |
3.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fcy5-mv1a-n7dh |
|
| 30 |
| url |
VCID-fvfb-k9ar-93eu |
| vulnerability_id |
VCID-fvfb-k9ar-93eu |
| summary |
The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by specifying KADM5_POLICY with a NULL policy name. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8630 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03623 |
| scoring_system |
epss |
| scoring_elements |
0.88014 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.03623 |
| scoring_system |
epss |
| scoring_elements |
0.88034 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.03623 |
| scoring_system |
epss |
| scoring_elements |
0.88038 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.03623 |
| scoring_system |
epss |
| scoring_elements |
0.88037 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8630 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-8630
|
| risk_score |
0.6 |
| exploitability |
0.5 |
| weighted_severity |
1.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fvfb-k9ar-93eu |
|
| 31 |
| url |
VCID-h23e-nhyz-8uda |
| vulnerability_id |
VCID-h23e-nhyz-8uda |
| summary |
The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request to modify a principal. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-3119
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h23e-nhyz-8uda |
|
| 32 |
| url |
VCID-hre7-pp7p-13fs |
| vulnerability_id |
VCID-hre7-pp7p-13fs |
| summary |
The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1.11.x before 1.11.1 does not properly handle errors during extraction of fields from an X.509 certificate, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed KRB5_PADATA_PK_AS_REQ AS-REQ request. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1415 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01588 |
| scoring_system |
epss |
| scoring_elements |
0.81961 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01588 |
| scoring_system |
epss |
| scoring_elements |
0.81994 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01588 |
| scoring_system |
epss |
| scoring_elements |
0.81995 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01588 |
| scoring_system |
epss |
| scoring_elements |
0.81996 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1415 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2013-1415
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hre7-pp7p-13fs |
|
| 33 |
|
| 34 |
| url |
VCID-j145-f5mp-xkeq |
| vulnerability_id |
VCID-j145-f5mp-xkeq |
| summary |
The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty continuation token at a certain point during a SPNEGO negotiation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4344 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0527 |
| scoring_system |
epss |
| scoring_elements |
0.90169 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0527 |
| scoring_system |
epss |
| scoring_elements |
0.90185 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0527 |
| scoring_system |
epss |
| scoring_elements |
0.90183 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0527 |
| scoring_system |
epss |
| scoring_elements |
0.90182 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4344 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-4344
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j145-f5mp-xkeq |
|
| 35 |
| url |
VCID-j6qa-q1h1-3uaq |
| vulnerability_id |
VCID-j6qa-q1h1-3uaq |
| summary |
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and "containerdn" database argument, or by supplying a DN string which is a left extension of a container DN string but is not hierarchically within the container DN. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2018-5730
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j6qa-q1h1-3uaq |
|
| 36 |
| url |
VCID-jbf6-vrjc-syg1 |
| vulnerability_id |
VCID-jbf6-vrjc-syg1 |
| summary |
The process_as_req function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.10.x before 1.10.3 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (uninitialized pointer dereference and daemon crash) or possibly execute arbitrary code via a malformed AS-REQ request. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2012-1014
|
| risk_score |
1.0 |
| exploitability |
0.5 |
| weighted_severity |
2.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jbf6-vrjc-syg1 |
|
| 37 |
|
| 38 |
| url |
VCID-ksar-xuza-8kg7 |
| vulnerability_id |
VCID-ksar-xuza-8kg7 |
| summary |
The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \n sequence. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0281 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.10754 |
| scoring_system |
epss |
| scoring_elements |
0.93472 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.10754 |
| scoring_system |
epss |
| scoring_elements |
0.93483 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.10754 |
| scoring_system |
epss |
| scoring_elements |
0.93484 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.10754 |
| scoring_system |
epss |
| scoring_elements |
0.93482 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0281 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-0281
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ksar-xuza-8kg7 |
|
| 39 |
| url |
VCID-ktuq-s8bz-1qam |
| vulnerability_id |
VCID-ktuq-s8bz-1qam |
| summary |
The process_chpw_request function in schpw.c in the password-changing functionality in kadmind in MIT Kerberos 5 (aka krb5) 1.7 through 1.9 frees an invalid pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted request that triggers an error condition. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-0285
|
| risk_score |
1.0 |
| exploitability |
2.0 |
| weighted_severity |
0.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ktuq-s8bz-1qam |
|
| 40 |
| url |
VCID-kwy5-x7m9-4qgt |
| vulnerability_id |
VCID-kwy5-x7m9-4qgt |
| summary |
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-28196 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76808 |
| published_at |
2026-06-07T12:55:00Z |
|
| 1 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76779 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76812 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76818 |
| published_at |
2026-06-06T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-28196 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-28196
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kwy5-x7m9-4qgt |
|
| 41 |
| url |
VCID-mbrk-dkua-uyeq |
| vulnerability_id |
VCID-mbrk-dkua-uyeq |
| summary |
The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2698 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75505 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75534 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75537 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00867 |
| scoring_system |
epss |
| scoring_elements |
0.75528 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2698 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2698
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mbrk-dkua-uyeq |
|
| 42 |
| url |
VCID-ny7t-pkm8-2fb4 |
| vulnerability_id |
VCID-ny7t-pkm8-2fb4 |
| summary |
The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1013 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01042 |
| scoring_system |
epss |
| scoring_elements |
0.77794 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01042 |
| scoring_system |
epss |
| scoring_elements |
0.77821 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01042 |
| scoring_system |
epss |
| scoring_elements |
0.77828 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01042 |
| scoring_system |
epss |
| scoring_elements |
0.77819 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2012-1013 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2012-1013
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ny7t-pkm8-2fb4 |
|
| 43 |
| url |
VCID-pj93-uzpy-3bg1 |
| vulnerability_id |
VCID-pj93-uzpy-3bg1 |
| summary |
lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mishandled during a gss_inquire_context call. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2696 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.10768 |
| scoring_system |
epss |
| scoring_elements |
0.93477 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.10768 |
| scoring_system |
epss |
| scoring_elements |
0.93488 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.10768 |
| scoring_system |
epss |
| scoring_elements |
0.93489 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.10768 |
| scoring_system |
epss |
| scoring_elements |
0.93486 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2696 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19%252Bdeb8u4 |
|
| 2 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2696
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pj93-uzpy-3bg1 |
|
| 44 |
| url |
VCID-pq2d-33kw-ayb7 |
| vulnerability_id |
VCID-pq2d-33kw-ayb7 |
| summary |
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-3576
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pq2d-33kw-ayb7 |
|
| 45 |
| url |
VCID-py4d-vrgu-5ueu |
| vulnerability_id |
VCID-py4d-vrgu-5ueu |
| summary |
lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2695 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04582 |
| scoring_system |
epss |
| scoring_elements |
0.89406 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.04582 |
| scoring_system |
epss |
| scoring_elements |
0.89424 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.04582 |
| scoring_system |
epss |
| scoring_elements |
0.89423 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.04582 |
| scoring_system |
epss |
| scoring_elements |
0.89422 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2695 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19%252Bdeb8u4 |
|
| 2 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2695
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-py4d-vrgu-5ueu |
|
| 46 |
|
| 47 |
| url |
VCID-s1hu-g4ns-5ydy |
| vulnerability_id |
VCID-s1hu-g4ns-5ydy |
| summary |
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-24528
|
| risk_score |
3.2 |
| exploitability |
0.5 |
| weighted_severity |
6.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s1hu-g4ns-5ydy |
|
| 48 |
| url |
VCID-t96y-1vd2-fqe3 |
| vulnerability_id |
VCID-t96y-1vd2-fqe3 |
| summary |
Off-by-one error in the krb5_encode_krbsecretkey function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) 1.6.x through 1.11.x before 1.11.6 and 1.12.x before 1.12.2 allows remote authenticated users to cause a denial of service (buffer overflow) or possibly execute arbitrary code via a series of "cpw -keepold" commands. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-4345
|
| risk_score |
1.5 |
| exploitability |
0.5 |
| weighted_severity |
3.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-t96y-1vd2-fqe3 |
|
| 49 |
|
| 50 |
|
| 51 |
| url |
VCID-ukkj-tn8u-yuab |
| vulnerability_id |
VCID-ukkj-tn8u-yuab |
| summary |
The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 does not verify whether '\0' characters exist as expected, which allows remote authenticated users to obtain sensitive information or cause a denial of service (out-of-bounds read) via a crafted string. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8629 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01237 |
| scoring_system |
epss |
| scoring_elements |
0.79588 |
| published_at |
2026-06-07T12:55:00Z |
|
| 1 |
| value |
0.02043 |
| scoring_system |
epss |
| scoring_elements |
0.8416 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.02043 |
| scoring_system |
epss |
| scoring_elements |
0.84183 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.02043 |
| scoring_system |
epss |
| scoring_elements |
0.84186 |
| published_at |
2026-06-06T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8629 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19%2Bdeb8u4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19%252Bdeb8u4 |
|
| 2 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-8629
|
| risk_score |
0.6 |
| exploitability |
0.5 |
| weighted_severity |
1.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ukkj-tn8u-yuab |
|
| 52 |
| url |
VCID-v4b9-7gb8-7kf7 |
| vulnerability_id |
VCID-v4b9-7gb8-7kf7 |
| summary |
The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13 sends old keys in a response to a -randkey -keepold request, which allows remote authenticated users to forge tickets by leveraging administrative access. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5351 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00348 |
| scoring_system |
epss |
| scoring_elements |
0.57614 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00348 |
| scoring_system |
epss |
| scoring_elements |
0.57666 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00348 |
| scoring_system |
epss |
| scoring_elements |
0.57674 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00348 |
| scoring_system |
epss |
| scoring_elements |
0.57665 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5351 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-5351
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v4b9-7gb8-7kf7 |
|
| 53 |
| url |
VCID-vq2w-pgev-f7ha |
| vulnerability_id |
VCID-vq2w-pgev-f7ha |
| summary |
The krb5_gss_process_context_token function in lib/gssapi/krb5/process_context_token.c in the libgssapi_krb5 library in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly maintain security-context handles, which allows remote authenticated users to cause a denial of service (use-after-free and double free, and daemon crash) or possibly execute arbitrary code via crafted GSSAPI traffic, as demonstrated by traffic to kadmind. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5352 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.05407 |
| scoring_system |
epss |
| scoring_elements |
0.90302 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.05407 |
| scoring_system |
epss |
| scoring_elements |
0.90317 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.05407 |
| scoring_system |
epss |
| scoring_elements |
0.90316 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.05407 |
| scoring_system |
epss |
| scoring_elements |
0.90314 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-5352 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-5352
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vq2w-pgev-f7ha |
|
| 54 |
| url |
VCID-vuzh-e7pz-fqgt |
| vulnerability_id |
VCID-vuzh-e7pz-fqgt |
| summary |
The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2004-0971 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00108 |
| scoring_system |
epss |
| scoring_elements |
0.28583 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00108 |
| scoring_system |
epss |
| scoring_elements |
0.28656 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00108 |
| scoring_system |
epss |
| scoring_elements |
0.28615 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00108 |
| scoring_system |
epss |
| scoring_elements |
0.28578 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2004-0971 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| purl |
pkg:deb/debian/krb5@1.15-1%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 1 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 2 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 3 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 4 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 5 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 6 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 7 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 8 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 9 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 10 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 11 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 12 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 13 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 14 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 15 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 16 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 17 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.15-1%252Bdeb9u1 |
|
|
| aliases |
CVE-2004-0971
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vuzh-e7pz-fqgt |
|
| 55 |
| url |
VCID-vxvk-vwan-ukak |
| vulnerability_id |
VCID-vxvk-vwan-ukak |
| summary |
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0282 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.09562 |
| scoring_system |
epss |
| scoring_elements |
0.93013 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.09562 |
| scoring_system |
epss |
| scoring_elements |
0.93024 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.09562 |
| scoring_system |
epss |
| scoring_elements |
0.93021 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.09562 |
| scoring_system |
epss |
| scoring_elements |
0.93016 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0282 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-0282
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vxvk-vwan-ukak |
|
| 56 |
|
| 57 |
| url |
VCID-xmhu-nkgw-kybr |
| vulnerability_id |
VCID-xmhu-nkgw-kybr |
| summary |
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_data and the key_data array count. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-36054
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xmhu-nkgw-kybr |
|
| 58 |
|
| 59 |
|
| 60 |
| url |
VCID-zv6f-cpbv-a7b7 |
| vulnerability_id |
VCID-zv6f-cpbv-a7b7 |
| summary |
The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unspecified vectors, related to the locked_check_p function. NOTE: the Berkeley DB vector is covered by CVE-2011-4151. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1528 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.05459 |
| scoring_system |
epss |
| scoring_elements |
0.90354 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.05459 |
| scoring_system |
epss |
| scoring_elements |
0.9037 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.05459 |
| scoring_system |
epss |
| scoring_elements |
0.90368 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.05459 |
| scoring_system |
epss |
| scoring_elements |
0.90366 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-1528 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
|
| aliases |
CVE-2011-1528
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zv6f-cpbv-a7b7 |
|
| 61 |
| url |
VCID-zxdc-pv4q-myb6 |
| vulnerability_id |
VCID-zxdc-pv4q-myb6 |
| summary |
MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4342 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.08139 |
| scoring_system |
epss |
| scoring_elements |
0.92317 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.08139 |
| scoring_system |
epss |
| scoring_elements |
0.92332 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.08139 |
| scoring_system |
epss |
| scoring_elements |
0.92329 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.08139 |
| scoring_system |
epss |
| scoring_elements |
0.92325 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4342 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| purl |
pkg:deb/debian/krb5@1.10.1%2Bdfsg-5%2Bdeb7u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1nn6-mr7d-wyhk |
|
| 1 |
| vulnerability |
VCID-2674-wgen-1qbk |
|
| 2 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 3 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 4 |
| vulnerability |
VCID-3df1-58jr-e7gv |
|
| 5 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 6 |
| vulnerability |
VCID-42rr-7ajf-eqg7 |
|
| 7 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 8 |
| vulnerability |
VCID-596a-s3un-vbbc |
|
| 9 |
| vulnerability |
VCID-6jnk-3rfw-nkh8 |
|
| 10 |
| vulnerability |
VCID-7wnb-bhuv-tycp |
|
| 11 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 12 |
| vulnerability |
VCID-bdmc-p544-bfg9 |
|
| 13 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 14 |
| vulnerability |
VCID-dbaq-qjd2-d7c9 |
|
| 15 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 16 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 17 |
| vulnerability |
VCID-esm3-3qwz-cud2 |
|
| 18 |
| vulnerability |
VCID-f343-u3jt-pkfy |
|
| 19 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 20 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 21 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 22 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 23 |
| vulnerability |
VCID-j145-f5mp-xkeq |
|
| 24 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 25 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 26 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 27 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 28 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 29 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 30 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 31 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 32 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 33 |
| vulnerability |
VCID-t96y-1vd2-fqe3 |
|
| 34 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 35 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 36 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 37 |
| vulnerability |
VCID-v4b9-7gb8-7kf7 |
|
| 38 |
| vulnerability |
VCID-vq2w-pgev-f7ha |
|
| 39 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 40 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 41 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 42 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 43 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
| 44 |
| vulnerability |
VCID-zxdc-pv4q-myb6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.10.1%252Bdfsg-5%252Bdeb7u7 |
|
| 1 |
| url |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| purl |
pkg:deb/debian/krb5@1.12.1%2Bdfsg-19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2tn3-dfqx-5yc9 |
|
| 1 |
| vulnerability |
VCID-3d22-kr2u-tuck |
|
| 2 |
| vulnerability |
VCID-3tas-mucv-aufk |
|
| 3 |
| vulnerability |
VCID-4mm3-t6eu-4qde |
|
| 4 |
| vulnerability |
VCID-b6a9-hnjx-c3gk |
|
| 5 |
| vulnerability |
VCID-c5he-57zg-fybc |
|
| 6 |
| vulnerability |
VCID-e1xu-a882-s3ga |
|
| 7 |
| vulnerability |
VCID-ekzs-tuvp-ybfq |
|
| 8 |
| vulnerability |
VCID-fcy5-mv1a-n7dh |
|
| 9 |
| vulnerability |
VCID-fvfb-k9ar-93eu |
|
| 10 |
| vulnerability |
VCID-h23e-nhyz-8uda |
|
| 11 |
| vulnerability |
VCID-husp-fm64-nfa9 |
|
| 12 |
| vulnerability |
VCID-j6qa-q1h1-3uaq |
|
| 13 |
| vulnerability |
VCID-jfhc-x8j6-yuab |
|
| 14 |
| vulnerability |
VCID-kwy5-x7m9-4qgt |
|
| 15 |
| vulnerability |
VCID-mbrk-dkua-uyeq |
|
| 16 |
| vulnerability |
VCID-pj93-uzpy-3bg1 |
|
| 17 |
| vulnerability |
VCID-pq2d-33kw-ayb7 |
|
| 18 |
| vulnerability |
VCID-py4d-vrgu-5ueu |
|
| 19 |
| vulnerability |
VCID-rgc3-hzw1-3bcp |
|
| 20 |
| vulnerability |
VCID-s1hu-g4ns-5ydy |
|
| 21 |
| vulnerability |
VCID-tg7a-etmk-6fea |
|
| 22 |
| vulnerability |
VCID-u4y9-vrsc-wbdy |
|
| 23 |
| vulnerability |
VCID-ukkj-tn8u-yuab |
|
| 24 |
| vulnerability |
VCID-vuzh-e7pz-fqgt |
|
| 25 |
| vulnerability |
VCID-wc2t-bbf1-mua5 |
|
| 26 |
| vulnerability |
VCID-xmhu-nkgw-kybr |
|
| 27 |
| vulnerability |
VCID-yejf-124s-hqgx |
|
| 28 |
| vulnerability |
VCID-yr93-awkm-v7ay |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/krb5@1.12.1%252Bdfsg-19 |
|
|
| aliases |
CVE-2014-4342
|
| risk_score |
1.1 |
| exploitability |
0.5 |
| weighted_severity |
2.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zxdc-pv4q-myb6 |
|