Security Advisory

CVE-2024-37371

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-28 00:00:00

Last updated 2025-11-03 20:38:01

Assigner mitre

State PUBLISHED

Description

In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.

← Browse all CVEs View on cve.org ↗