Security bypass vulnerability in krb5 due improper validation of client requestID: oval:org.secpod.oval:def:25165 | Date: (C)2015-06-23 (M)2021-09-11 |
Class: VULNERABILITY | Family: unix |
The host is installed with krb5 package on Red Hat Enterprise Linux 7 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle a crafted client request. Successful exploitation could allow attackers to bypass an intended preauthentication requirement.
Platform: |
Red Hat Enterprise Linux 7 |