Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2020-17049: Kerberos KDC Security Feature Bypass Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2020-17049: Kerberos KDC Security Feature Bypass Vulnerability

Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
11/10/2020
Created
11/11/2020
Added
11/10/2020
Modified
09/24/2024

Description

Kerberos Security Feature Bypass Vulnerability

Solution(s)

  • microsoft-windows-windows_server_2012-kb5004302
  • microsoft-windows-windows_server_2012_r2-kb5004285
  • microsoft-windows-windows_server_2016-1607-kb5004238
  • microsoft-windows-windows_server_2019-1809-kb5004244
  • msft-kb4586781-56714409-d481-4757-9ddb-f246c37de035
  • msft-kb4586781-61b28978-5be9-4b5a-900a-de3d4bdd71e6
  • msft-kb4586786-754f3970-83cd-4860-a3a7-5faee41f203c
  • msft-kb4586786-b8ff0759-7b98-4be2-8eee-732c475a8a3a
  • msft-kb4586808-c68a7eed-11c7-4375-a290-a4e4db52406c
  • msft-kb4586808-dc26161a-5429-43f8-b8bd-5988217775ce
  • msft-kb4586823-9dcbf77c-2231-46a9-8d0e-7514e9ff8574
  • msft-kb4586823-b08dcda4-0ee8-41be-9103-159510ebaebc
  • msft-kb4592503-122e6a25-df5f-4ca0-846b-e0e9d8f6c960
  • msft-kb4592503-386c25c6-618e-49d0-901b-7872f0ffacc9
  • msft-kb4592503-6ea99f57-37b5-42c3-ad56-72e38ece5205
  • msft-kb4592503-e6e88251-3474-4591-9402-0d207236b562
  • msft-kb4592503-f5b8657c-bd34-43c1-a30a-e225eeeb340c
  • msft-kb4592504-1e21b3cf-6168-452a-81bb-7f4397bc4ac2
  • msft-kb4592504-b2ee47ff-f55d-41d8-9e2c-c3aee31a32ce
  • msft-kb5001330-3dbb1426-3e2c-42ff-980f-1f4456c0d687
  • msft-kb5001330-db6ecaed-f2c4-4477-a30a-a282e2c5d0ea
  • msft-kb5001332-3e25f4e5-6bb0-4f92-ba68-f55d1280e0bc
  • msft-kb5001332-c3aec530-732e-46b6-9fd3-87b49ae17640
  • msft-kb5001337-582c3e2f-89bd-452c-8cb3-8aadcd326971
  • msft-kb5001383-9eb92b0a-cd7e-466e-a457-196171912c50
  • msft-kb5001383-d16c38bc-35b9-4062-b2ce-ce61e8308dd2
  • msft-kb5001392-aa714c87-b9b6-4180-94b0-72ab0c85ade4
  • msft-kb5001392-b36a5493-fdb1-4461-8eac-4f0d62dd4d5d
  • msft-kb5001392-e82427e1-fc51-4f10-a007-0595dd431eb7
  • msft-kb5001393-63841b9e-1420-42d7-83f5-40b9b2e05421
  • msft-kb5001393-d859a92b-c192-4f41-9978-0ea33ffc12b5
  • msft-kb5004237-38119d76-c7d4-4c60-a7b1-6582264e57a0
  • msft-kb5004237-8620b445-9c81-482b-9d03-e27091ea2fb5
  • msft-kb5004285-55c0b521-02dd-4d17-bc1d-5e9476bff00a
  • msft-kb5004285-ac4b11d9-f4a8-4664-aea1-c26ab336c4b5
  • msft-kb5004299-0681098f-0f99-4396-8ced-7a15d8c11a76
  • msft-kb5004299-8a1666be-2e21-4cf6-ab96-7418aef45588
  • msft-kb5004302-7c520250-dce8-46a3-9e68-46ff39df0651
  • msft-kb5004302-c8e6c3d2-e678-426e-8e3f-01b94eb2f561
  • msft-kb5004307-6509204e-56eb-403f-8e24-e464f8930fc6
  • msft-kb5004307-6562d22c-b2e1-4f27-852e-2b98d9e51e8f
  • msft-kb5004307-f65259aa-c49c-44fd-b490-dc5a1fd1bcdf
  • msft-kb5004307-f7d03619-f12e-431d-a04b-1db9f9dc884c
  • msft-kb5004307-fddc132d-0af9-4bb8-ba55-8b3ab0d7146d

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;