[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-42898":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":34,"duplicate_of":9,"upstream":35,"downstream":36,"duplicates":115,"related":116,"reserved_at":9,"published_at":133,"modified_at":134,"state":135,"summary":136,"references_raw":144,"kevs":195,"epss":196,"epss_history":199,"metrics":460,"affected":468},"CVE-2022-42898","PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has \"a similar bug.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[25],{"_key":26,"name":27,"source":28,"url":29,"maturity":30,"reliability_score":31,"verified":32,"type":9,"platforms":33,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_C5F82FDAE42B7D61","Exploit Reference (bugzilla.samba.org)","reference","https://bugzilla.samba.org/show_bug.cgi?id=15203","unknown",0.2,false,[],[],[],[37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113],{"_key":38},"ALPINE-CVE-2022-42898",{"_key":40},"SUSE-SU-2022:4154-1",{"_key":42},"RHEA-2023:3850",{"_key":44},"RHSA-2022:8637",{"_key":46},"RHSA-2022:8638",{"_key":48},"RHSA-2022:8639",{"_key":50},"RHSA-2022:8640",{"_key":52},"RHSA-2022:8641",{"_key":54},"RHSA-2022:8648",{"_key":56},"RHSA-2022:8662",{"_key":58},"RHSA-2022:8663",{"_key":60},"RHSA-2022:8669",{"_key":62},"RHSA-2022:9029",{"_key":64},"SUSE-SU-2022:4155-1",{"_key":66},"SUSE-SU-2022:4335-1",{"_key":68},"SUSE-SU-2023:0081-1",{"_key":70},"SUSE-SU-2022:4153-1",{"_key":72},"SUSE-SU-2022:4167-1",{"_key":74},"SUSE-SU-2022:4395-1",{"_key":76},"SUSE-SU-2023:0160-1",{"_key":78},"SUSE-SU-2023:0198-1",{"_key":80},"OPENSUSE-SU-2023:0019-1",{"_key":82},"OPENSUSE-SU-2023:0020-1",{"_key":84},"OPENSUSE-SU-2024:12524-1",{"_key":86},"OPENSUSE-SU-2024:12525-1",{"_key":88},"DLA-3206-1",{"_key":90},"DLA-3213-1",{"_key":92},"DSA-5286-1",{"_key":94},"DSA-5287-1",{"_key":96},"MGASA-2022-0467",{"_key":98},"MGASA-2022-0468",{"_key":100},"MGASA-2023-0010",{"_key":102},"USN-5822-1",{"_key":104},"USN-5936-1",{"_key":106},"DEBIAN-CVE-2022-42898",{"_key":108},"UBUNTU-CVE-2022-42898",{"_key":110},"USN-5800-1",{"_key":112},"USN-5828-1",{"_key":114},"USN-7582-1",[],[117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132],{"_key":40},{"_key":100},{"_key":64},{"_key":66},{"_key":68},{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":78},{"_key":80},{"_key":82},{"_key":84},{"_key":86},{"_key":96},{"_key":98},"2022-12-25T00:00:00.000Z","2025-04-14T18:33:09.110Z","Modified",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":137,"epss_score":138,"severity":139,"severity_score":140,"severity_version":141,"severity_source":142,"severity_vector":143,"severity_status":135},"medium",0.10832,"high",8.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[145,151,156,161,165,169,174,179,183,187,191],{"url":146,"sources":147,"tags":149},"https://web.mit.edu/kerberos/advisories/",[142,148],"nvd",[150],"Vendor Advisory",{"url":152,"sources":153,"tags":154},"https://www.samba.org/samba/security/CVE-2022-42898.html",[142,148],[155],"Third Party Advisory",{"url":157,"sources":158,"tags":159},"https://github.com/krb5/krb5/commit/ea92d2f0fcceb54a70910fa32e9a0d7a5afc3583",[142,148],[160,155],"Patch",{"url":162,"sources":163,"tags":164},"https://github.com/heimdal/heimdal/security/advisories/GHSA-64mq-fvfj-5x3c",[142,148],[155],{"url":166,"sources":167,"tags":168},"https://web.mit.edu/kerberos/krb5-1.20/README-1.20.1.txt",[142,148],[150],{"url":170,"sources":171,"tags":172},"https://web.mit.edu/kerberos/krb5-1.19/",[142,148],[173,150],"Release Notes",{"url":29,"sources":175,"tags":176},[142,148],[177,178,160,155],"Exploit","Issue Tracking",{"url":180,"sources":181,"tags":182},"https://security.netapp.com/advisory/ntap-20230216-0008/",[142,148],[],{"url":184,"sources":185,"tags":186},"https://security.netapp.com/advisory/ntap-20230223-0001/",[142,148],[],{"url":188,"sources":189,"tags":190},"https://security.gentoo.org/glsa/202309-06",[142,148],[150],{"url":192,"sources":193,"tags":194},"https://security.gentoo.org/glsa/202310-06",[142,148],[150],[],{"date":197,"score":138,"percentile":198},"2026-06-04",0.935,[200,204,207,210,213,216,218,220,223,226,229,232,235,238,241,245,248,251,254,257,260,263,266,270,273,276,279,282,285,288,291,293,296,299,302,304,307,310,313,316,319,322,325,328,331,334,337,339,341,344,347,350,353,356,359,361,363,366,369,372,375,378,381,384,387,389,392,395,398,400,404,406,409,411,414,417,420,423,425,428,431,434,437,440,443,446,449,452,454,457],{"date":201,"score":202,"percentile":203},"2025-11-04",0.10605,0.92938,{"date":205,"score":202,"percentile":206},"2025-11-05",0.92939,{"date":208,"score":202,"percentile":209},"2025-11-06",0.9294,{"date":211,"score":202,"percentile":212},"2025-11-07",0.92945,{"date":214,"score":202,"percentile":215},"2025-11-08",0.92946,{"date":217,"score":202,"percentile":212},"2025-11-09",{"date":219,"score":202,"percentile":215},"2025-11-10",{"date":221,"score":202,"percentile":222},"2025-11-11",0.92951,{"date":224,"score":202,"percentile":225},"2025-11-12",0.92958,{"date":227,"score":202,"percentile":228},"2025-11-13",0.92961,{"date":230,"score":202,"percentile":231},"2025-11-14",0.92964,{"date":233,"score":202,"percentile":234},"2025-11-15",0.92959,{"date":236,"score":202,"percentile":237},"2025-11-16",0.92963,{"date":239,"score":202,"percentile":240},"2025-11-17",0.92962,{"date":242,"score":243,"percentile":244},"2025-11-18",0.23212,0.95574,{"date":246,"score":243,"percentile":247},"2025-11-19",0.95575,{"date":249,"score":243,"percentile":250},"2025-11-20",0.95578,{"date":252,"score":202,"percentile":253},"2025-11-21",0.92978,{"date":255,"score":202,"percentile":256},"2025-11-22",0.92977,{"date":258,"score":202,"percentile":259},"2025-11-23",0.9298,{"date":261,"score":202,"percentile":262},"2025-11-24",0.92981,{"date":264,"score":202,"percentile":265},"2025-11-25",0.92983,{"date":267,"score":268,"percentile":269},"2025-11-26",0.08368,0.91935,{"date":271,"score":202,"percentile":272},"2025-11-27",0.92982,{"date":274,"score":268,"percentile":275},"2025-11-28",0.91925,{"date":277,"score":268,"percentile":278},"2025-11-29",0.91948,{"date":280,"score":268,"percentile":281},"2025-11-30",0.91947,{"date":283,"score":268,"percentile":284},"2025-12-01",0.91986,{"date":286,"score":268,"percentile":287},"2025-12-02",0.91989,{"date":289,"score":268,"percentile":290},"2025-12-03",0.91991,{"date":292,"score":268,"percentile":281},"2025-12-04",{"date":294,"score":268,"percentile":295},"2025-12-05",0.9195,{"date":297,"score":268,"percentile":298},"2025-12-06",0.91953,{"date":300,"score":268,"percentile":301},"2025-12-07",0.91951,{"date":303,"score":268,"percentile":301},"2025-12-08",{"date":305,"score":268,"percentile":306},"2025-12-09",0.91956,{"date":308,"score":268,"percentile":309},"2025-12-10",0.91965,{"date":311,"score":268,"percentile":312},"2025-12-11",0.91968,{"date":314,"score":268,"percentile":315},"2025-12-12",0.9197,{"date":317,"score":268,"percentile":318},"2025-12-13",0.91961,{"date":320,"score":268,"percentile":321},"2025-12-14",0.91958,{"date":323,"score":268,"percentile":324},"2025-12-15",0.9196,{"date":326,"score":268,"percentile":327},"2025-12-16",0.91971,{"date":329,"score":268,"percentile":330},"2025-12-17",0.91977,{"date":332,"score":268,"percentile":333},"2025-12-18",0.91981,{"date":335,"score":268,"percentile":336},"2025-12-19",0.91985,{"date":338,"score":268,"percentile":336},"2025-12-20",{"date":340,"score":268,"percentile":284},"2025-12-21",{"date":342,"score":268,"percentile":343},"2025-12-22",0.91984,{"date":345,"score":268,"percentile":346},"2025-12-23",0.91987,{"date":348,"score":268,"percentile":349},"2025-12-24",0.91992,{"date":351,"score":268,"percentile":352},"2025-12-25",0.91996,{"date":354,"score":268,"percentile":355},"2025-12-26",0.91995,{"date":357,"score":268,"percentile":358},"2025-12-27",0.92018,{"date":360,"score":268,"percentile":290},"2025-12-28",{"date":362,"score":268,"percentile":346},"2025-12-29",{"date":364,"score":268,"percentile":365},"2025-12-30",0.91993,{"date":367,"score":268,"percentile":368},"2025-12-31",0.92,{"date":370,"score":268,"percentile":371},"2026-01-01",0.92057,{"date":373,"score":268,"percentile":374},"2026-01-02",0.92054,{"date":376,"score":268,"percentile":377},"2026-01-03",0.92053,{"date":379,"score":268,"percentile":380},"2026-01-04",0.92009,{"date":382,"score":268,"percentile":383},"2026-01-05",0.92008,{"date":385,"score":268,"percentile":386},"2026-01-06",0.9201,{"date":388,"score":268,"percentile":380},"2026-01-07",{"date":390,"score":268,"percentile":391},"2026-01-08",0.92011,{"date":393,"score":268,"percentile":394},"2026-01-09",0.92014,{"date":396,"score":268,"percentile":397},"2026-01-10",0.92016,{"date":399,"score":268,"percentile":380},"2026-01-11",{"date":401,"score":402,"percentile":403},"2026-01-12",0.08889,0.92301,{"date":405,"score":402,"percentile":403},"2026-01-13",{"date":407,"score":402,"percentile":408},"2026-01-14",0.92312,{"date":410,"score":402,"percentile":408},"2026-01-15",{"date":412,"score":402,"percentile":413},"2026-01-16",0.92314,{"date":415,"score":402,"percentile":416},"2026-01-17",0.92315,{"date":418,"score":402,"percentile":419},"2026-01-18",0.92309,{"date":421,"score":402,"percentile":422},"2026-01-19",0.9231,{"date":424,"score":402,"percentile":413},"2026-01-20",{"date":426,"score":402,"percentile":427},"2026-01-21",0.92318,{"date":429,"score":402,"percentile":430},"2026-01-22",0.92321,{"date":432,"score":402,"percentile":433},"2026-01-23",0.92329,{"date":435,"score":402,"percentile":436},"2026-01-24",0.92335,{"date":438,"score":402,"percentile":439},"2026-01-25",0.92337,{"date":441,"score":402,"percentile":442},"2026-01-26",0.92339,{"date":444,"score":402,"percentile":445},"2026-01-27",0.92341,{"date":447,"score":402,"percentile":448},"2026-01-28",0.92343,{"date":450,"score":402,"percentile":451},"2026-01-29",0.92344,{"date":453,"score":402,"percentile":448},"2026-01-30",{"date":455,"score":402,"percentile":456},"2026-01-31",0.92342,{"date":458,"score":402,"percentile":459},"2026-02-01",0.92384,[461,466],{"source":142,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":462,"cvss_v4_0":9},{"baseScore":140,"baseSeverity":463,"vectorString":143,"impactScore":464,"exploitabilityScore":465},"HIGH",9.8,7.2,{"source":148,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":467,"cvss_v4_0":9},{"baseScore":140,"baseSeverity":463,"vectorString":143,"impactScore":464,"exploitabilityScore":465},[469,480,494],{"ecosystem":9,"name":470,"vendor":471,"product":470,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":473},"heimdal","heimdal_project","a",[474],{"version":475,"is_range":476,"range_type":477,"version_start":9,"version_start_type":9,"version_end":478,"version_end_type":479,"fixed_in":9},"lt7.7.1",true,"cpe","7.7.1","excluding",{"ecosystem":9,"name":481,"vendor":482,"product":483,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},"kerberos 5","mit","kerberos_5",[485,490,492],{"version":486,"is_range":476,"range_type":477,"version_start":487,"version_start_type":488,"version_end":489,"version_end_type":479,"fixed_in":9},"gte1.8_lt1.19.4","1.8","including","1.19.4",{"version":491,"is_range":32,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.20",{"version":493,"is_range":32,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.20:beta1",{"ecosystem":9,"name":495,"vendor":495,"product":495,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":496},"samba",[497,500,504],{"version":498,"is_range":476,"range_type":477,"version_start":9,"version_start_type":9,"version_end":499,"version_end_type":479,"fixed_in":9},"lt4.15.12","4.15.12",{"version":501,"is_range":476,"range_type":477,"version_start":502,"version_start_type":488,"version_end":503,"version_end_type":479,"fixed_in":9},"gte4.16.0_lt4.16.7","4.16.0","4.16.7",{"version":505,"is_range":476,"range_type":477,"version_start":506,"version_start_type":488,"version_end":507,"version_end_type":479,"fixed_in":9},"gte4.17.0_lt4.17.3","4.17.0","4.17.3"]