VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
rhas	Important	https://access.redhat.com/errata/RHSA-2010:0925
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.00694	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.03499	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
epss	0.06017	https://api.first.org/data/v1/epss?cve=CVE-2010-1324
rhbs	high	https://bugzilla.redhat.com/show_bug.cgi?id=648674
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2010-1324
cvssv3	3.7	https://nvd.nist.gov/vuln/detail/CVE-2010-1324
generic_textual	HIGH	http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

System

Score

Found at

generic_textual

MODERATE

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

rhas

Important

https://access.redhat.com/errata/RHSA-2010:0925

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.00694

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.03499

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

epss

0.06017

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

rhbs

high

https://bugzilla.redhat.com/show_bug.cgi?id=648674

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2010-1324

cvssv3

3.7

https://nvd.nist.gov/vuln/detail/CVE-2010-1324

generic_textual

HIGH

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Reference id

Reference type

URL

http://kb.vmware.com/kb/1035108

http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051976.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051999.html

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

http://lists.vmware.com/pipermail/security-announce/2011/000133.html

http://marc.info/?l=bugtraq&m=129562442714657&w=2

http://osvdb.org/69609

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1324.json

https://api.first.org/data/v1/epss?cve=CVE-2010-1324

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1324

http://secunia.com/advisories/42399

http://secunia.com/advisories/43015

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11936

http://support.apple.com/kb/HT4581

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-007.txt

http://www.mandriva.com/security/advisories?name=MDVSA-2010:246

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

http://www.redhat.com/support/errata/RHSA-2010-0925.html

http://www.securityfocus.com/archive/1/514953/100/0/threaded

http://www.securityfocus.com/archive/1/517739/100/0/threaded

http://www.securityfocus.com/bid/45116

http://www.securitytracker.com/id?1024803

http://www.ubuntu.com/usn/USN-1030-1

http://www.vmware.com/security/advisories/VMSA-2011-0007.html

http://www.vupen.com/english/advisories/2010/3094

http://www.vupen.com/english/advisories/2010/3095

http://www.vupen.com/english/advisories/2010/3118

http://www.vupen.com/english/advisories/2011/0187

605553

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605553

648674

https://bugzilla.redhat.com/show_bug.cgi?id=648674

cpe:2.3:a:mit:kerberos_5:1.7:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.7:*:*:*:*:*:*:*

cpe:2.3:a:mit:kerberos_5:1.7.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.7.1:*:*:*:*:*:*:*

cpe:2.3:a:mit:kerberos_5:1.8:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.8:*:*:*:*:*:*:*

cpe:2.3:a:mit:kerberos_5:1.8.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.8.1:*:*:*:*:*:*:*

cpe:2.3:a:mit:kerberos_5:1.8.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.8.2:*:*:*:*:*:*:*

cpe:2.3:a:mit:kerberos_5:1.8.3:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mit:kerberos_5:1.8.3:*:*:*:*:*:*:*

CVE-2010-1324

https://nvd.nist.gov/vuln/detail/CVE-2010-1324

GLSA-201201-13

https://security.gentoo.org/glsa/201201-13

RHSA-2010:0925

https://access.redhat.com/errata/RHSA-2010:0925

USN-1030-1

https://usn.ubuntu.com/1030-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

There are no relevant records.

Vulnerability ID	VCID-2kzh-ctxq-aaar
Aliases	CVE-2010-1324
Summary	MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unkeyed PAC checksum, or (3) a KrbFastArmoredReq checksum based on an RC4 key.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

Percentile	0.80601
EPSS Score	0.00694
Published At	Nov. 1, 2024, midnight