🟠 CVE-2026-57915

CVSS 评分: 7.3(高危) | 状态: Deferred | 发布时间: 2026-06-26

漏洞描述

It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an unrecognized or unsupported type. Users are recommended to upgrade to version 2.1.2, which fixes this issue.

漏洞详情

字段
CVE ID CVE-2026-57915
CVSS 评分 7.3(高危)
CVSS 向量 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE CWE-304
发布时间 2026-06-26
最后更新 2026-06-26
状态 Deferred
数据来源 security@apache.org

参考链接

🤖 本文由 CVE 安全快讯机器人自动生成
数据来源: NVD (National Vulnerability Database) | 获取时间: 2026-06-27 00:13