CVE-2017-7562

Summary

An authentication bypass flaw was found in the way krb5's certauth interface before 1.16.1 handled the validation of client certificates. A remote attacker able to communicate with the KDC could potentially use this flaw to impersonate arbitrary principals under rare and erroneous circumstances.

Affected Software

VendorProductVersion RangeStatus
MITkrb51.16.1affected

Weaknesses

  • CWE-295: CWE-295
  • CWE-287: CWE-287

ADP Enrichment

CVE Program Container

Additional References

References