MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity.
LDAP
Information Disclosure
Code Injection
Kerberos 5
Fedora
+4
NVD
GitHub
CVSS 3.1
3.8
EPSS
2.3%