Vulnerabilities (CVE)

Filtered by vendor Kerberos Project Subscribe
Filtered by product Kerberos
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13110 1 Kerberos Project 1 Kerberos 2024-11-21 6.9 MEDIUM 7.8 HIGH
The kerberos package before 1.0.0 for Node.js allows arbitrary code execution and privilege escalation via injection of malicious DLLs through use of the kerberos_sspi LoadLibrary() method, because of a DLL path search.