EPSS
Percentile
82.0%
A flaw was found in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 “enctypes”. A remote unauthenticated user could use this flaw to crash the KDC.
bugzilla.redhat.com/show_bug.cgi?id=1753589
github.com/krb5/krb5/pull/981
nvd.nist.gov/vuln/detail/CVE-2019-14844
www.cve.org/CVERecord?id=CVE-2019-14844