cbcvebase.
CVE-2025-24528
published 2026-01-16

CVE-2025-24528: In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An…

PriorityP339high7.1CVSS 3.1
AVNACHPRLUINSCCNILAH
EPSS
0.61%
44.5th percentile
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.

Affected

9 ranges
VendorProductVersion rangeFixed in
debiankrb5< krb5 1.20.1-2+deb12u3 (bookworm)krb5 1.20.1-2+deb12u3 (bookworm)
mitkerberos_5>= 1.7 < 1.221.22
mitkrb5>= 0 < 1.18.3-6+deb11u61.18.3-6+deb11u6
mitkrb5>= 0 < 1.20.1-2+deb12u31.20.1-2+deb12u3
mitkrb5>= 0 < 1.21.3-51.21.3-5
mitkrb5>= 0 < 1.21.3-51.21.3-5
mitkrb5>= 0 < 1.17-6ubuntu4.91.17-6ubuntu4.9
mitkrb5>= 0 < 1.19.2-2ubuntu0.61.19.2-2ubuntu0.6
mitkrb5>= 0 < 1.20.1-6ubuntu2.51.20.1-6ubuntu2.5

CVSS provenance

nvdv3.17.1HIGHCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H
osv7.1HIGH
vendor_debian7.1HIGH
vendor_redhat7.1HIGH
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.