Latchset Kdcproxy
2 CVEs affecting Latchset Kdcproxy. Latest disclosed: 2025-11-12. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-59088 | High | 8.6 | 2025-11-12 | If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS… |
CVE-2025-59089 | Medium | 5.9 | 2025-11-12 | If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server-side request forgery), they can exploit the fact that kdcpr… |