krb5 (SUSE:Linux Enterprise Server 12-LTSS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12-LTSS package krb5, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2017-7562 — CVSS 6.5 (medium): An authentication bypass flaw was found in the way krb5's certauth interface before 1.16.1 handled the validation of client certificates. A…
CVE-2018-20217 — CVSS 5.3 (medium): A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket…