PT-2024-6104 · Mit+10 · Mit Kerberos 5+10

Jacob Champion

·

Published

2024-06-27

·

Updated

2026-02-18

·

CVE-2024-37370

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 versions prior to 1.21.3
Description The issue is related to the modification of the plaintext Extra Count field of a confidential GSS krb5 wrap token. This can cause the unwrapped token to appear truncated to the application, potentially allowing a remote attacker to gain unauthorized access to the GSS krb5 token.
Recommendations For versions prior to 1.21.3, update to version 1.21.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the GSS krb5 wrap token to minimize the risk of exploitation.

Fix

Insufficient Verification of Data Authenticity

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-345CWE-20

Related Identifiers

ALSA-2024:5312
ALSA-2024:6166
ALT-PU-2024-9477
ALT-PU-2024-9479
ALT-PU-2025-1464
AZL-42991
AZL-43002
BDU:2024-07016
CESA-2024_5312
CVE-2024-37370
DSA-5726-1
INFSA-2024_5312
INFSA-2024_6166
MGASA-2024-0253
OESA-2024-1825
OPENSUSE-SU-2024:14111-1
OPENSUSE-SU-2024_2302-1
OPENSUSE-SU-2024_2303-1
OPENSUSE-SU-2024_2307-1
OPENSUSE-SU-2024_2322-1
RHSA-2024:4734
RHSA-2024:4743
RHSA-2024:5076
RHSA-2024:5312
RHSA-2024:5316
RHSA-2024:5625
RHSA-2024:5630
RHSA-2024:5643
RHSA-2024:5884
RHSA-2024:6166
RHSA-2024_5312
RHSA-2024_6166
SUSE-SU-2024:2300-1
SUSE-SU-2024:2302-1
SUSE-SU-2024:2303-1
SUSE-SU-2024:2305-1
SUSE-SU-2024:2307-1
SUSE-SU-2024:2322-1
SUSE-SU-2024_2300-1
SUSE-SU-2024_2302-1
SUSE-SU-2024_2303-1
SUSE-SU-2024_2305-1
SUSE-SU-2024_2307-1
SUSE-SU-2024_2322-1
SUSE-SU-2025:20051-1
USN-6947-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Mit Kerberos 5
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu