CVE-2024-20674

Name of the Vulnerable Software and Affected Versions Windows Kerberos (affected versions not specified)

Description The vulnerability is related to a security feature bypass in the Windows Kerberos implementation, allowing an authenticated attacker to establish a machine-in-the-middle (MITM) attack or use other local network spoofing techniques to send a malicious Kerberos message to the client victim machine, spoofing itself as the Kerberos authentication server. This could allow attackers to bypass authentication. The issue is estimated to be critical, with potential for significant impact.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.