Invalid Free Vulnerability in Heimdal Key Distribution Center (KDC) Allows Remote Code Execution

Invalid Free Vulnerability in Heimdal Key Distribution Center (KDC) Allows Remote Code Execution

CVE-2022-44640 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).

Learn more about our Web Application Penetration Testing UK.