Language:
https://security-tracker.debian.org/tracker/source-package/krb5
https://www.debian.org/lts/security/2021/dla-2771
https://security-tracker.debian.org/tracker/CVE-2018-20217
https://security-tracker.debian.org/tracker/CVE-2018-5729
https://security-tracker.debian.org/tracker/CVE-2018-5730
https://security-tracker.debian.org/tracker/CVE-2021-37750
深刻度: Medium
ID: 153808
ファイル名: debian_DLA-2771.nasl
バージョン: 1.3
タイプ: local
エージェント: unix
ファミリー: Debian Local Security Checks
公開日: 2021/10/1
更新日: 2022/7/19
サポートされているセンサー: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
リスクファクター: Low
スコア: 3.6
リスクファクター: Medium
基本値: 6.5
現状値: 4.8
ベクトル: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS スコアのソース: CVE-2018-5729
リスクファクター: Medium
基本値: 4.7
現状値: 4.1
ベクトル: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
現状ベクトル: CVSS:3.0/E:U/RL:O/RC:C
CPE: p-cpe:/a:debian:debian_linux:krb5-pkinit, p-cpe:/a:debian:debian_linux:libkrb5support0, cpe:/o:debian:debian_linux:9.0, p-cpe:/a:debian:debian_linux:krb5-gss-samples, p-cpe:/a:debian:debian_linux:libkrad0, p-cpe:/a:debian:debian_linux:libkdb5-8, p-cpe:/a:debian:debian_linux:libkrad-dev, p-cpe:/a:debian:debian_linux:libkadm5clnt-mit11, p-cpe:/a:debian:debian_linux:krb5-kdc, p-cpe:/a:debian:debian_linux:krb5-otp, p-cpe:/a:debian:debian_linux:krb5-admin-server, p-cpe:/a:debian:debian_linux:libgssapi-krb5-2, p-cpe:/a:debian:debian_linux:libkrb5-dev, p-cpe:/a:debian:debian_linux:libkadm5srv-mit11, p-cpe:/a:debian:debian_linux:krb5-multidev, p-cpe:/a:debian:debian_linux:libgssrpc4, p-cpe:/a:debian:debian_linux:libk5crypto3, p-cpe:/a:debian:debian_linux:libkrb5-dbg, p-cpe:/a:debian:debian_linux:krb5-locales, p-cpe:/a:debian:debian_linux:krb5-user, p-cpe:/a:debian:debian_linux:libkrb5-3, p-cpe:/a:debian:debian_linux:krb5-kpropd, p-cpe:/a:debian:debian_linux:krb5-doc, p-cpe:/a:debian:debian_linux:krb5-k5tls, p-cpe:/a:debian:debian_linux:krb5-kdc-ldap
必要な KB アイテム: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
エクスプロイトの容易さ: No known exploits are available
パッチ公開日: 2021/9/30
脆弱性公開日: 2018/2/13
CVE: CVE-2018-20217, CVE-2018-5729, CVE-2018-5730, CVE-2021-37750
IAVB: 2021-B-0054-S