cbcvebase.
CVE-2010-4020
published 2010-12-02

CVE-2010-4020: MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote authenticated users to forge a (1)…

PriorityP335medium6.3CVSS 3.0
AVNACLPRLUINSUCLILAL
EPSS
1.92%
77.3th percentile
MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote authenticated users to forge a (1) AD-SIGNEDPATH or (2) AD-KDC-ISSUED signature, and possibly gain privileges, by leveraging the small key space that results from certain one-byte stream-cipher operations.

Affected

11 ranges
VendorProductVersion rangeFixed in
debiankrb5< krb5 1.8.3+dfsg-3 (bookworm)krb5 1.8.3+dfsg-3 (bookworm)
mitkerberos_5
mitkerberos_5
mitkerberos_5
mitkerberos_5
mitkrb5>= 0 < 1.8.3+dfsg-31.8.3+dfsg-3
mitkrb5>= 0 < 1.8.3+dfsg-31.8.3+dfsg-3
mitkrb5>= 0 < 1.8.3+dfsg-31.8.3+dfsg-3
mitkrb5>= 0 < 1.8.3+dfsg-31.8.3+dfsg-3
vmwarevmware_esxi
vmwarevmware_workstation

CVSS provenance

nvdv3.06.3MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
osv6.3MEDIUM
vendor_debian6.3MEDIUM
vendor_redhat6.3MEDIUM
vendor_ubuntu3.7LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.