Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Enterprise Ipa
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-3274 1 Redhat 2 Enterprise Ipa, Freeipa 2024-11-21 5.0 MEDIUM N/A
The default configuration of Red Hat Enterprise IPA 1.0.0 and FreeIPA before 1.1.1 places ldap:///anyone on the read ACL for the krbMKey attribute, which allows remote attackers to obtain the Kerberos master key via an anonymous LDAP query.