indicatorfilename
/tmp/krb5cc_*
- First seen
- 2026-05-13
- Last seen
- 2026-05-13
- Sightings
- 1
Posts referencing this indicator
- CVE-2026-31979: The Symlink Trap — Root Privilege Escalation in Himmelblau
Target path pattern in /tmp used by himmelblaud-tasks for Kerberos credential caches, vulnerable to symlink hijacking.