Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2020-13110

Disclosure Date: May 16, 2020 (last updated February 21, 2025)
The kerberos package before 1.0.0 for Node.js allows arbitrary code execution and privilege escalation via injection of malicious DLLs through use of the kerberos_sspi LoadLibrary() method, because of a DLL path search.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2014-8650

Disclosure Date: December 15, 2019 (last updated November 27, 2024)
python-requests-Kerberos through 0.5 does not handle mutual authentication
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0