Known Vulnerabilities for Kerberos 5 by Mit
Listed below are 10 of the newest known vulnerabilities associated with "Kerberos 5" by "Mit".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-60109 json | Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that allows unauthentic... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-57915 json | It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an unrecognized or u... | Not Provided | 2026-06-26 | 2026-06-30 |
| CVE-2026-55654 json | A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic Secu... | Not Provided | 2026-06-23 | 2026-07-08 |
| CVE-2026-47288 json | Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code over an adjacent network. | Not Provided | 2026-06-09 | 2026-06-10 |
| CVE-2026-42914 json | Out-of-bounds read in Windows Kerberos allows an authorized attacker to deny service over a network. | Not Provided | 2026-06-09 | 2026-07-08 |
| CVE-2026-42903 json | Null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network. | Not Provided | 2026-06-09 | 2026-06-10 |
| CVE-2026-42483 json | A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or... | Not Provided | 2026-05-01 | 2026-05-01 |
| CVE-2026-40356 json | In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application ... | Not Provided | 2026-04-28 | 2026-04-28 |
| CVE-2026-40355 json | In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer dereference if an application calls gss_accept_sec_contex... | Not Provided | 2026-04-28 | 2026-04-28 |
| CVE-2026-31392 json | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix krb5 mount with username option Custom... | Not Provided | 2026-04-03 | 2026-04-27 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mit | Kerberos 5 | 16.3 | |||
| Application | Mit | Kerberos 5 | 1.9.5 | |||
| Application | Mit | Kerberos 5 | 1.9.4 | |||
| Application | Mit | Kerberos 5 | 1.9.3 | |||
| Application | Mit | Kerberos 5 | 1.9.2 | |||
| Application | Mit | Kerberos 5 | 1.9.1 | |||
| Application | Mit | Kerberos 5 | 1.9 | |||
| Application | Mit | Kerberos 5 | 1.8.6 | |||
| Application | Mit | Kerberos 5 | 1.8.5 | |||
| Application | Mit | Kerberos 5 | 1.8.4 | |||
| Application | Mit | Kerberos 5 | 1.8.3 | |||
| Application | Mit | Kerberos 5 | 1.8.2 | |||
| Application | Mit | Kerberos 5 | 1.8.1 | |||
| Application | Mit | Kerberos 5 | 1.8 | |||
| Application | Mit | Kerberos 5 | 1.7.2 | |||
| Application | Mit | Kerberos 5 | 1.7.1 | |||
| Application | Mit | Kerberos 5 | 1.7 | |||
| Application | Mit | Kerberos 5 | 1.6.3 | |||
| Application | Mit | Kerberos 5 | 1.6.2 | |||
| Application | Mit | Kerberos 5 | 1.6.1 |