Vulnerability Details : CVE-2018-20217
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket using an older encryption type (single-DES, triple-DES, or RC4), the attacker can crash the KDC by making an S4U2Self request.
Products affected by CVE-2018-20217
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-20217
0.24%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 62 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-20217
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.5
|
LOW | AV:N/AC:M/Au:S/C:N/I:N/A:P |
6.8
|
2.9
|
NIST | |
5.3
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.6
|
3.6
|
NIST |
CWE ids for CVE-2018-20217
-
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-20217
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2KNHELH4YHNT6H2ESJWX2UIDXLBNGB2O/
[SECURITY] Fedora 29 Update: krb5-1.16.1-22.fc29 - package-announce - Fedora Mailing-ListsThird Party Advisory
-
https://github.com/krb5/krb5/commit/5e6d1796106df8ba6bc1973ee0917c170d929086
Ignore password attributes for S4U2Self requests · krb5/krb5@5e6d179 · GitHubPatch;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2021/09/msg00019.html
[SECURITY] [DLA 2771-1] krb5 security updateMailing List;Third Party Advisory
-
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8763
#8763: Ignore password attributes for S4U2Self requestsPatch;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2019/01/msg00020.html
[SECURITY] [DLA 1643-1] krb5 security updateMailing List;Third Party Advisory
-
https://security.netapp.com/advisory/ntap-20190416-0006/
CVE-2018-20217 MIT Kerberos 5 Vulnerability in NetApp Products | NetApp Product SecurityThird Party Advisory
Jump to