[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-3120":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":40,"related":41,"reserved_at":9,"published_at":45,"modified_at":46,"state":47,"summary":48,"references_raw":57,"kevs":110,"epss":111,"epss_history":114,"metrics":373,"affected":384},"CVE-2016-3120","The validate_as_request function in kdc_util.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.13.6 and 1.4.x before 1.14.3, when restrict_anonymous_to_tgt is enabled, uses an incorrect client data structure, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an S4U2Self request.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[],[],[],[24,26,28,30,32,34,36,38],{"_key":25},"ALPINE-CVE-2016-3120",{"_key":27},"RHSA-2016:2591",{"_key":29},"SUSE-SU-2016:2136-1",{"_key":31},"OPENSUSE-SU-2024:10004-1",{"_key":33},"DLA-1265-1",{"_key":35},"MGASA-2016-0306",{"_key":37},"UBUNTU-CVE-2016-3120",{"_key":39},"DEBIAN-CVE-2016-3120",[],[42,43,44],{"_key":29},{"_key":31},{"_key":35},"2016-08-01T01:00:00.000Z","2024-08-05T23:47:57.164Z","Modified",{"cisa_kev":49,"cisa_ransomware":49,"cisa_vendor":9,"epss_severity":50,"epss_score":51,"severity":52,"severity_score":53,"severity_version":54,"severity_source":55,"severity_vector":56,"severity_status":47},false,"low",0.0432,"medium",6.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[58,64,70,76,82,87,92,96,101,105],{"url":59,"sources":60,"tags":62},"https://github.com/krb5/krb5/commit/93b4a6306a0026cf1cc31ac4bd8a49ba5d034ba7",[61,55],"cve.org",[63],"X Refsource CONFIRM",{"url":65,"sources":66,"tags":67},"http://www.securityfocus.com/bid/92132",[61,55],[68,69],"VDB Entry","X Refsource BID",{"url":71,"sources":72,"tags":73},"https://lists.debian.org/debian-lts-announce/2018/01/msg00040.html",[61,55],[74,75],"Mailing List","X Refsource MLIST",{"url":77,"sources":78,"tags":79},"http://lists.opensuse.org/opensuse-updates/2016-09/msg00035.html",[61,55],[80,81],"Vendor Advisory","X Refsource SUSE",{"url":83,"sources":84,"tags":85},"http://krbdev.mit.edu/rt/Ticket/Display.html?id=8458",[61,55],[63,86],"Issue Tracking",{"url":88,"sources":89,"tags":90},"http://www.securitytracker.com/id/1036442",[61,55],[68,91],"X Refsource SECTRACK",{"url":93,"sources":94,"tags":95},"http://web.mit.edu/kerberos/krb5-1.13/",[61,55],[63],{"url":97,"sources":98,"tags":99},"http://rhn.redhat.com/errata/RHSA-2016-2591.html",[61,55],[80,100],"X Refsource REDHAT",{"url":102,"sources":103,"tags":104},"http://web.mit.edu/kerberos/krb5-1.14/",[61,55],[63],{"url":106,"sources":107,"tags":108},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AWL3KYFRJIX37EAM4DKCQQIQP2WBKL35/",[61,55],[80,109],"X Refsource FEDORA",[],{"date":112,"score":51,"percentile":113},"2026-06-04",0.89087,[115,119,122,125,128,131,135,138,142,145,148,151,154,157,160,163,166,169,172,174,177,180,182,184,187,190,193,196,199,202,205,208,211,214,217,220,222,225,228,231,234,237,240,243,245,248,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,294,297,300,302,304,306,309,311,314,316,319,321,324,327,330,333,336,338,341,344,347,350,353,356,359,362,365,367,370],{"date":116,"score":117,"percentile":118},"2025-11-04",0.01887,0.8258,{"date":120,"score":117,"percentile":121},"2025-11-05",0.82584,{"date":123,"score":117,"percentile":124},"2025-11-06",0.82587,{"date":126,"score":117,"percentile":127},"2025-11-07",0.82597,{"date":129,"score":117,"percentile":130},"2025-11-08",0.82602,{"date":132,"score":133,"percentile":134},"2025-11-09",0.05551,0.89831,{"date":136,"score":133,"percentile":137},"2025-11-10",0.89829,{"date":139,"score":140,"percentile":141},"2025-11-11",0.03262,0.86649,{"date":143,"score":140,"percentile":144},"2025-11-12",0.86654,{"date":146,"score":140,"percentile":147},"2025-11-13",0.8666,{"date":149,"score":140,"percentile":150},"2025-11-14",0.86662,{"date":152,"score":140,"percentile":153},"2025-11-15",0.86656,{"date":155,"score":140,"percentile":156},"2025-11-16",0.86659,{"date":158,"score":140,"percentile":159},"2025-11-17",0.8665,{"date":161,"score":140,"percentile":162},"2025-11-18",0.85914,{"date":164,"score":140,"percentile":165},"2025-11-19",0.85917,{"date":167,"score":140,"percentile":168},"2025-11-20",0.85918,{"date":170,"score":140,"percentile":171},"2025-11-21",0.86664,{"date":173,"score":140,"percentile":156},"2025-11-22",{"date":175,"score":140,"percentile":176},"2025-11-23",0.86653,{"date":178,"score":140,"percentile":179},"2025-11-24",0.86652,{"date":181,"score":140,"percentile":176},"2025-11-25",{"date":183,"score":140,"percentile":144},"2025-11-26",{"date":185,"score":140,"percentile":186},"2025-11-27",0.86655,{"date":188,"score":140,"percentile":189},"2025-11-28",0.8664,{"date":191,"score":140,"percentile":192},"2025-11-29",0.86713,{"date":194,"score":140,"percentile":195},"2025-11-30",0.86711,{"date":197,"score":140,"percentile":198},"2025-12-01",0.8677,{"date":200,"score":140,"percentile":201},"2025-12-02",0.86772,{"date":203,"score":140,"percentile":204},"2025-12-03",0.86771,{"date":206,"score":140,"percentile":207},"2025-12-04",0.86707,{"date":209,"score":140,"percentile":210},"2025-12-05",0.86709,{"date":212,"score":140,"percentile":213},"2025-12-06",0.86706,{"date":215,"score":140,"percentile":216},"2025-12-07",0.86698,{"date":218,"score":140,"percentile":219},"2025-12-08",0.86699,{"date":221,"score":140,"percentile":213},"2025-12-09",{"date":223,"score":140,"percentile":224},"2025-12-10",0.86727,{"date":226,"score":140,"percentile":227},"2025-12-11",0.86733,{"date":229,"score":140,"percentile":230},"2025-12-12",0.86735,{"date":232,"score":140,"percentile":233},"2025-12-13",0.86732,{"date":235,"score":140,"percentile":236},"2025-12-14",0.86726,{"date":238,"score":140,"percentile":239},"2025-12-15",0.86724,{"date":241,"score":140,"percentile":242},"2025-12-16",0.86731,{"date":244,"score":140,"percentile":227},"2025-12-17",{"date":246,"score":140,"percentile":247},"2025-12-18",0.86743,{"date":249,"score":140,"percentile":247},"2025-12-19",{"date":251,"score":140,"percentile":252},"2025-12-20",0.86742,{"date":254,"score":140,"percentile":255},"2025-12-21",0.86744,{"date":257,"score":140,"percentile":258},"2025-12-22",0.86738,{"date":260,"score":140,"percentile":261},"2025-12-23",0.8674,{"date":263,"score":140,"percentile":264},"2025-12-24",0.86749,{"date":266,"score":140,"percentile":267},"2025-12-25",0.86763,{"date":269,"score":140,"percentile":270},"2025-12-26",0.86764,{"date":272,"score":140,"percentile":273},"2025-12-27",0.86808,{"date":275,"score":140,"percentile":276},"2025-12-28",0.86758,{"date":278,"score":140,"percentile":279},"2025-12-29",0.86751,{"date":281,"score":140,"percentile":282},"2025-12-30",0.86757,{"date":284,"score":140,"percentile":285},"2025-12-31",0.86767,{"date":287,"score":140,"percentile":288},"2026-01-01",0.86828,{"date":290,"score":140,"percentile":291},"2026-01-02",0.8683,{"date":293,"score":140,"percentile":291},"2026-01-03",{"date":295,"score":140,"percentile":296},"2026-01-04",0.86765,{"date":298,"score":140,"percentile":299},"2026-01-05",0.86761,{"date":301,"score":140,"percentile":270},"2026-01-06",{"date":303,"score":140,"percentile":296},"2026-01-07",{"date":305,"score":140,"percentile":201},"2026-01-08",{"date":307,"score":140,"percentile":308},"2026-01-09",0.86773,{"date":310,"score":140,"percentile":308},"2026-01-10",{"date":312,"score":140,"percentile":313},"2026-01-11",0.86768,{"date":315,"score":140,"percentile":296},"2026-01-12",{"date":317,"score":140,"percentile":318},"2026-01-13",0.86762,{"date":320,"score":140,"percentile":308},"2026-01-14",{"date":322,"score":140,"percentile":323},"2026-01-15",0.86774,{"date":325,"score":140,"percentile":326},"2026-01-16",0.86779,{"date":328,"score":140,"percentile":329},"2026-01-17",0.86781,{"date":331,"score":140,"percentile":332},"2026-01-18",0.86782,{"date":334,"score":140,"percentile":335},"2026-01-19",0.86777,{"date":337,"score":140,"percentile":204},"2026-01-20",{"date":339,"score":140,"percentile":340},"2026-01-21",0.86776,{"date":342,"score":140,"percentile":343},"2026-01-22",0.86783,{"date":345,"score":140,"percentile":346},"2026-01-23",0.86799,{"date":348,"score":140,"percentile":349},"2026-01-24",0.86805,{"date":351,"score":140,"percentile":352},"2026-01-25",0.868,{"date":354,"score":140,"percentile":355},"2026-01-26",0.86796,{"date":357,"score":140,"percentile":358},"2026-01-27",0.86797,{"date":360,"score":140,"percentile":361},"2026-01-28",0.86801,{"date":363,"score":140,"percentile":364},"2026-01-29",0.86802,{"date":366,"score":140,"percentile":361},"2026-01-30",{"date":368,"score":140,"percentile":369},"2026-01-31",0.86804,{"date":371,"score":140,"percentile":372},"2026-02-01",0.86872,[374],{"source":55,"cvss_v2_0":375,"cvss_v3_0":380,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":376,"baseSeverity":9,"vectorString":377,"impactScore":378,"exploitabilityScore":379},4,"AV:N/AC:L/Au:S/C:N/I:N/A:P",2.9,8,{"baseScore":53,"baseSeverity":381,"vectorString":56,"impactScore":382,"exploitabilityScore":383},"MEDIUM",6,7.2,[385],{"ecosystem":9,"name":386,"vendor":387,"product":388,"cpe_part":389,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":390},"kerberos 5","mit","kerberos_5","a",[391,394,396,398,400,402,404,406,408,410],{"version":392,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13","cpe",{"version":395,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.1",{"version":397,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.2",{"version":399,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.3",{"version":401,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.4",{"version":403,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.5",{"version":405,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.13.6",{"version":407,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.14",{"version":409,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.14.1",{"version":411,"is_range":49,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.14.2"]