Lucene search
OracleLinuxELSA-2024-0143HistoryJan 12, 2024 - 12:00 a.m.
idm:DL1 security update
2024-01-1200:00:00
linux.oracle.com
36
idm
dl1
security update
opendnssec
custodia
ipa
csrf protection
vulnerability
buffer tcp data
address sorting
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
6.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.024
Percentile
90.1%
bind-dyndb-ldap
custodia
ipa
[4.9.12-11.0.1]
- Resolves: 2242828 Invalid CSRF protection (CVE-2023-5455)
ipa-healthcheck
opendnssec
python-jwcrypto
python-kdcproxy
[0.4-5] - Always buffer TCP data in __handle_recv()
- Resolves: #1747144
[0.4-4] - Correct addrs sorting to be by TCP/UDP
- Resolves: #1732898
python-qrcode
python-yubico
pyusb
slapi-nis
softhsm
Related
nessus
nessus
RHEL 8 : krb5 (RHSA-2024:0252)
2024-01-15 00:00:00
CentOS 8 : idm:DL1 (CESA-2024:0143)
2024-01-10 00:00:00
RHEL 8 : idm:DL1 (RHSA-2024:0143)
2024-01-10 00:00:00
rocky
rocky
idm:DL1 security update
2024-01-12 19:57:42
osv
osv
Moderate: idm:DL1 security update
2024-01-10 00:00:00
Moderate: idm:DL1 security update
2024-01-12 19:57:42
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
redhat
redhat
(RHSA-2024:0143) Moderate: idm:DL1 security update
2024-01-10 12:30:55
(RHSA-2024:0252) Moderate: krb5 security update
2024-01-15 15:25:49
(RHSA-2024:0139) Moderate: idm:DL1 security update
2024-01-10 12:29:21
almalinux
almalinux
Moderate: idm:DL1 security update
2024-01-10 00:00:00
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
Moderate: ipa security update
2024-01-10 00:00:00
mskb
mskb
July 13, 2021 Public preview security update (KB5004243)
2021-06-02 00:00:00
June 8, 2021 Public preview security update (KB5003645)
2021-05-05 00:00:00
March 9, 2021—KB5000856 (Security-only update)
2021-03-09 08:00:00
prion
prion
Security feature bypass
2020-11-11 07:15:00
Cross site request forgery (csrf)
2024-01-10 13:15:00
cvelist
cvelist
CVE-2020-17049 Kerberos KDC Security Feature Bypass Vulnerability
2020-11-11 00:00:00
CVE-2023-5455 Ipa: invalid csrf protection
2024-01-10 12:33:00
cbl_mariner
cbl_mariner
CVE-2020-17049 affecting package samba 4.12.5-6
2024-09-28 21:12:13
openvas
openvas
Samba Security Feature Bypass Vulnerability (CVE-2020-17049)
2021-10-28 00:00:00
Fedora: Security Advisory for freeipa (FEDORA-2024-403145c4fb)
2024-01-26 00:00:00
Fedora: Security Advisory (FEDORA-2024-4a8d4aedcb)
2024-09-10 00:00:00
nvd
nvd
CVE-2020-17049
2020-11-11 07:15:16
CVE-2023-5455
2024-01-10 13:15:48
attackerkb
attackerkb
CVE-2020-17049
2020-11-11 00:00:00
cve
cve
CVE-2020-17049
2020-11-11 07:15:16
CVE-2023-5455
2024-01-10 13:15:48
msrc
msrc
Kerberos KDC の脆弱性 (CVE-2020-17049) に対応するためのガイダンス
2020-11-19 08:00:00
mscve
mscve
Kerberos KDC Security Feature Bypass Vulnerability
2020-11-10 08:00:00
oraclelinux
oraclelinux
krb5 security, bug fix, and enhancement update
2023-05-15 00:00:00
ipa security update
2024-01-11 00:00:00
ipa security update
2024-01-10 00:00:00
redhatcve
redhatcve
CVE-2020-17049
2021-11-22 20:20:39
CVE-2023-5455
2024-01-10 12:32:40
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.14.9-alt1
2021-11-01 00:00:00
amazon
amazon
Medium: ipa
2024-02-15 03:52:00
Important: samba
2022-12-01 17:33:00
debiancve
debiancve
CVE-2023-5455
2024-01-10 13:15:48
redos
redos
ROS-20240402-09
2024-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: freeipa-4.10.3-1.fc38
2024-01-26 00:43:14
[SECURITY] Fedora 39 Update: freeipa-4.11.1-1.fc39
2024-01-26 00:38:32
ubuntucve
ubuntucve
CVE-2023-5455
2024-01-10 00:00:00
centos
centos
ipa, python2 security update
2024-01-12 19:09:24
suse
suse
Security update for samba and ldb (important)
2021-11-10 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2450
2024-07-15 08:46:32
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
kaspersky
kaspersky
KLA12003 Multiple vulnerabilities in Microsoft Products (ESU)
2020-11-10 00:00:00
KLA12004 Multiple vulnerabilities in Microsoft Windows
2020-11-10 00:00:00
avleonov
avleonov
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
6.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.024
Percentile
90.1%
Related for ELSA-2024-0143