RHSA-2024:0252

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2020-17049 CVE-2023-5455

Published: 16 Sept 2024, 16:09

Last modified:18 Mar 2026, 12:00

Vulnerability Summary

Overall Risk (default)

medium

29/100

CVSS Score

7.2 HIGH

3.1 (osv_red_hat)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Sept 2024, 16:09

Published

Vulnerability first disclosed

18 Mar 2026, 12:00

Last Modified

Vulnerability information updated

Description

Red Hat Security Advisory: krb5 security update

CVSS Metrics

v3.1•HIGH•Score: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected Systems

redhat•krb5
< 0:1.18.2-16.el8_6
redhat•krb5-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-debugsource
< 0:1.18.2-16.el8_6
redhat•krb5-devel
< 0:1.18.2-16.el8_6
redhat•krb5-devel-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-libs
< 0:1.18.2-16.el8_6
redhat•krb5-libs-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-pkinit
< 0:1.18.2-16.el8_6
redhat•krb5-pkinit-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-server
< 0:1.18.2-16.el8_6
redhat•krb5-server-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-server-ldap
< 0:1.18.2-16.el8_6
redhat•krb5-server-ldap-debuginfo
< 0:1.18.2-16.el8_6
redhat•krb5-workstation
< 0:1.18.2-16.el8_6
redhat•krb5-workstation-debuginfo
< 0:1.18.2-16.el8_6
redhat•libkadm5
< 0:1.18.2-16.el8_6
redhat•libkadm5-debuginfo
< 0:1.18.2-16.el8_6

References (17)