python3-kdcproxy (AlmaLinux:10) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:10 package python3-kdcproxy, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2025-59088 — CVSS 8.6 (high): If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV…
CVE-2025-59089 — CVSS 5.9 (medium): If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit…