Lucene search
PhotonPHSA-2019-3.0-0020HistoryJun 17, 2019 - 12:00 a.m.
Moderate Photon OS Security Update - PHSA-2019-3.0-0020
2019-06-1700:00:00
github.com
32
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.9 High
AI Score
Confidence
Low
0.102 Low
EPSS
Percentile
95.0%
Updates of [‘nss’, ‘krb5’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 3.0 | x86_64 | krb5 | < 1.17-1.ph3 | krb5-1.17-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | krb5-debuginfo | < 1.17-1.ph3 | krb5-debuginfo-1.17-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | nss-devel | < 3.44-1.ph3 | nss-devel-3.44-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | krb5-devel | < 1.17-1.ph3 | krb5-devel-1.17-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | krb5-lang | < 1.17-1.ph3 | krb5-lang-1.17-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | nss-libs | < 3.44-1.ph3 | nss-libs-3.44-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | nss | < 3.44-1.ph3 | nss-3.44-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | nss-debuginfo | < 3.44-1.ph3 | nss-debuginfo-3.44-1.ph3.x86_64.rpm |
Related
photon
photon
Moderate Photon OS Security Update - PHSA-2019-0020
2019-06-17 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0164
2019-06-17 00:00:00
Moderate Photon OS Security Update - PHSA-2023-5.0-0062
2023-08-01 00:00:00
nessus
nessus
Photon OS 3.0: Krb5 PHSA-2019-3.0-0020
2019-06-24 00:00:00
Photon OS 1.0: Krb5 PHSA-2019-1.0-0239
2019-06-24 00:00:00
Photon OS 2.0: Krb5 PHSA-2019-2.0-0164
2019-06-24 00:00:00
debian
debian
[SECURITY] [DLA 1643-1] krb5 security update
2019-01-25 22:46:23
[SECURITY] [DLA 2771-1] krb5 security update
2021-09-30 20:08:58
[SECURITY] [DLA 1704-1] nss security update
2019-03-05 03:44:43
osv
osv
krb5 - security update
2019-01-25 00:00:00
CVE-2018-20217
2018-12-26 21:29:02
CVE-2018-12404
2019-05-02 17:29:01
openvas
openvas
Debian: Security Advisory (DLA-1643-1)
2019-01-27 00:00:00
Debian: Security Advisory (DLA-2771-1)
2021-10-01 00:00:00
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2019-2600)
2020-01-23 00:00:00
suse
suse
Security update for krb5 (important)
2019-01-18 00:00:00
Security update for krb5 (important)
2019-01-25 00:00:00
Security update for mozilla-nss (important)
2019-02-14 00:00:00
nvd
nvd
fedora
fedora
[SECURITY] Fedora 29 Update: krb5-1.16.1-24.fc29
2019-01-08 02:43:21
[SECURITY] Fedora 29 Update: krb5-1.16.1-22.fc29
2018-12-24 06:08:40
[SECURITY] Fedora 28 Update: krb5-1.16.1-24.fc28
2019-01-11 00:17:04
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.16.3-alt1
2019-01-08 00:00:00
Security fix for the ALT Linux 9 package krb5 version 1.16.1-alt1.S1
2018-08-27 00:00:00
prion
prion
Design/Logic Flaw
2018-12-26 21:29:00
Design/Logic Flaw
2019-05-02 17:29:00
Null pointer dereference
2018-03-06 20:29:00
redhatcve
redhatcve
ibm
ibm
Security Bulletin: Network Security (NSS) vulnerability affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2023-03-29 01:48:02
amazon
amazon
cve
cve
mageia
mageia
Updated krb5 packages fix security vulnerability
2019-01-10 13:53:49
Updated nss packages fix security vulnerability
2018-12-16 00:29:48
ubuntucve
ubuntucve
veracode
veracode
Information Disclosure
2019-08-08 00:07:30
Denial Of Service (DoS) Through Null Pointer Dereference
2018-04-27 08:03:30
alpinelinux
alpinelinux
CVE-2018-12404
2019-05-02 17:29:01
CVE-2018-20217
2018-12-26 21:29:02
f5
f5
K10281096 : TLS in Mozilla NSS vulnerability CVE-2018-12404
2019-01-07 00:00:00
debiancve
debiancve
slackware
slackware
[slackware-security] mozilla-nss
2018-12-03 21:40:40
symantec
symantec
cvelist
cvelist
cloudfoundry
cloudfoundry
USN-5828-1: Kerberos vulnerabilities | Cloud Foundry
2023-02-24 00:00:00
redhat
redhat
oraclelinux
oraclelinux
krb5 security, bug fix, and enhancement update
2018-11-05 00:00:00
archlinux
archlinux
[ASA-201806-3] krb5: insufficient validation
2018-06-05 00:00:00
centos
centos
krb5, libkadm5 security update
2018-11-15 18:48:14
ubuntu
ubuntu
Kerberos vulnerabilities
2023-01-25 00:00:00
NSS vulnerabilities
2019-02-18 00:00:00
vmware
vmware
exploitdb
exploitdb
VMware Cloud Director 10.5 - Bypass identity verification
2024-03-12 00:00:00
packetstorm
packetstorm
VMware Cloud Director 10.5 Authentication Bypass
2024-03-13 00:00:00
zdt
zdt
VMware Cloud Director - Bypass identity verification Exploit
2023-12-08 00:00:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.9 High
AI Score
Confidence
Low
0.102 Low
EPSS
Percentile
95.0%
Related for PHSA-2019-3.0-0020