Vulnerabilities (CVE)

Filtered by vendor Apple Subscribe
Filtered by product Pykerberos
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-3206 1 Apple 1 Pykerberos 2024-11-21 6.8 MEDIUM 8.1 HIGH
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.