Vulnerability DatabaseCVE-2023-39975

CVE-2023-39975:
Kerberos vulnerability analysis and mitigation

Overview

MIT Kerberos 5 (krb5) version 1.21 before 1.21.2 contains a double free vulnerability in kdc/do_tgs_req.c. The vulnerability is triggered when an authenticated user can cause an authorization-data handling failure, where incorrect data is copied from one ticket to another (MITRE CVE, NVD Database).

Technical details

The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The issue occurs in the ticket-granting service (TGS) processing where a double free condition can be triggered during authorization-data handling. The vulnerability is classified as CWE-415 (Double Free) and affects MIT Kerberos 5 versions from 1.21 up to (excluding) 1.21.2 (NVD Database).

Impact

Successful exploitation of this vulnerability could lead to disclosure of sensitive information, addition or modification of data, or Denial of Service (DoS). The high CVSS score indicates severe potential impacts on confidentiality, integrity, and availability of the affected systems (NetApp Advisory).

Mitigation and workarounds

The vulnerability has been fixed in MIT Kerberos 5 version 1.21.2. The patch modifies the TGS request processing to copy only the server field from the outer part of the header ticket to the new ticket, instead of copying the whole structure (GitHub Patch).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

8.8

Score

Published August 16, 2023

Severity HIGH

CNA Score N/A

Affected Technologies

Kerberos
Alma Linux

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 75.2

Exploitation Probability (EPSS) 0.9

Affected packages and libraries

krb5-debugsource
libkadm5

Sources

AlmaLinux Security Advisory
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Nov 16, 2023
Gentoo Advisory Database
- Gentoo Severity MEDIUMHas FixAdded at: May 06, 2024
Red Hat Errata
- Red Hat 9 Severity HIGHHas FixAdded at: Aug 23, 2023
NVD
- Linux Severity HIGHHas FixAdded at: Aug 23, 2023

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Kerberos vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2024-37371	CRITICAL	9.1	MySQL	krb5-plugin-preauth-otp	No	Yes	Jun 28, 2024
CVE-2024-37370	HIGH	7.5	Kerberos	krb5-plugin-preauth-otp	No	Yes	Jun 28, 2024
CVE-2025-3576	MEDIUM	5.9	Kerberos	krb5-plugin-kdb-ldap	No	Yes	Apr 15, 2025
CVE-2024-26462	MEDIUM	5.5	Kerberos	krb5-debuginfo	No	Yes	Feb 29, 2024
CVE-2025-24528	N/A	N/A	Kerberos	krb5-workstation	No	Yes	Jan 31, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2023-39975: Kerberos vulnerability analysis and mitigation