Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2025-24528

CVE-2025-24528

HIGH7.1

In MIT Kerberos 5 (aka krb5) before 1

Published Jan 16, 2026

Modified 3 days ago

Details

In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.

References

WEBhttps://github.com/krb5/krb5/commit/78ceba024b64d49612375be4a12d1c066b0bfbd0 WEBhttps://github.com/krb5/krb5/compare/krb5-1.21.3-final...krb5-1.22-final WEBhttps://lists.debian.org/debian-lts-announce/2025/02/msg00029.html ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-24528

CVSS Analysis

CVSS v3.1

7.1

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

HighAC:H

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

ChangedS:C

Impact

Confidentiality

NoneC:N

Integrity

LowI:L

Availability

HighA:H

7.1/CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedJan 16, 2026

ModifiedJan 16, 2026

CVE-2025-24528 | Mondoo Vulnerability Intelligence