CVE-2024-26458

DEB

Medium

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

CVSS

5.9

Medium

EPSS

0.01

p52

Published

2024-01-01

Updated

2024-01-01

Description

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

Tags · CWE

Pre-auth

CWE-401

Affected products

Active_iq_unified_managerCloud_volumes_ontap_mediatorManagement_services_for_element_software_and_netapp_hciOntap_9Ontap_select_deploy_administration_utility

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Timeline

2024-01-01

Published

2024-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: H

High (H)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: N

None (N)

Integrity Impact

I: N

None (N)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.008 · p52

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Active Iq Unified Manager Ontap Select Deploy Administration Utility H610s H610s Firmware H610c H610c Firmware H615c H615c Firmware Management Services For Element Software And Netapp Hci Cloud Volumes Ontap Mediator+1

Mit

Kerberos 5

Product	Vendor	Status
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
krb5		Tracked
active_iq_unified_manager	*	Tracked
cloud_volumes_ontap_mediator	*	Tracked
h610c_firmware	*	Tracked
h610s_firmware	*	Tracked
h615c_firmware	*	Tracked
kerberos_5	*	Tracked

Showing first 20 of 23

Source databases

DEB

CVE

RED

UBU

Related vulnerabilities

BDU:2024-02699