CVE-2020-17049: Kerberos KDC Security Feature Bypass Vulnerability
First published: Wed Nov 11 2020(Updated: )
<p>A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).</p> <p>To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it.</p> <p>The update addresses this vulnerability by changing how the KDC validates service tickets used with KCD.</p>
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =r2 | ||
| =20h2 | ||
| =1903 | ||
| =1909 | ||
| =2004 | ||
| >=4.1.0<4.13.13 | ||
| >=4.14.0<4.14.9 | ||
| >=4.15.0<4.15.1 | ||
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =20h2 | |
| Microsoft Windows Server 2016 | =1903 | |
| Microsoft Windows Server 2016 | =1909 | |
| Microsoft Windows Server 2016 | =2004 | |
| Microsoft Windows Server 2019 | ||
| Samba Samba | >=4.1.0<4.13.13 | |
| Samba Samba | >=4.14.0<4.14.9 | |
| Samba Samba | >=4.15.0<4.15.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049
- http://www.openwall.com/lists/oss-security/2021/11/10/3
- https://security.gentoo.org/glsa/202309-06
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2026712
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2026711
- https://access.redhat.com/errata/RHSA-2023:2570
- https://access.redhat.com/security/cve/cve-2020-17049
- https://access.redhat.com/errata/RHSA-2024:0137
- https://access.redhat.com/errata/RHSA-2024:0139
- https://access.redhat.com/errata/RHSA-2024:0143
- https://access.redhat.com/errata/RHSA-2024:0252
- https://bugzilla.redhat.com/show_bug.cgi?id=2025721
Frequently Asked Questions
What is CVE-2020-17049?
CVE-2020-17049 is a Kerberos Security Feature Bypass Vulnerability.
What software is affected by CVE-2020-17049?
Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows Server 2016, Microsoft Windows Server 2019, and Samba versions 4.1.0 to 4.15.0 are affected by CVE-2020-17049.
How severe is CVE-2020-17049?
CVE-2020-17049 has a severity rating of 7.2 (out of 10).
What is the Common Weakness Enumeration (CWE) for CVE-2020-17049?
The CWE for CVE-2020-17049 is CWE-863.
How can I learn more about CVE-2020-17049?
You can find more information about CVE-2020-17049 in the references provided: Openwall, Microsoft Security Guidance Advisory, and Gentoo GLSA.
- collector/mitre-cve
- agent/type
- agent/first-publish-date
- agent/author
- agent/softwarecombine
- agent/remedy
- agent/title
- agent/weakness
- agent/severity
- agent/description
- agent/references
- agent/tags
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-17049
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows server 2012
- version/microsoft windows server 2012/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/20h2
- version/microsoft windows server 2016/1903
- version/microsoft windows server 2016/1909
- version/microsoft windows server 2016/2004
- canonical/microsoft windows server 2019
- vendor/samba
- canonical/samba samba
- version/samba samba/4.1.0
- version/samba samba/4.14.0
- version/samba samba/4.15.0