Filter
Versions
Linux-PAMPam: libpam: libpam vulnerable to read hashed password
4.7
First published (updated )
CVE-2024-47191: Local root exploit in the PAM module pam_oath.so
First published (updated )
Linux-PAMpam_wheel in Linux-PAM 0.78, with the trust option enabled and the use_uid option disabled, allows l…
4.6
First published (updated )
Linux-PAMpam_unix.so in Linux-PAM 0.99.7.0 allows context-dependent attackers to log into accounts whose pass…
7.2
First published (updated )
Linux-PAMpam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment…
6.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux-PAMThe run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.…
3.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux-PAMpam_access does not handle netmask matches correctly
9.3
First published (updated )
redhat/pamA flaw was found in Linux-Pam in versions prior to 1.5.1 in the way it handle empty passwords for no…
10
First published (updated )
Linux-PAMThe Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH …
9.8
First published (updated )
ubuntu/pampam: pam_namespace misses O_DIRECTORY flag in `protect_dir()` (CVE-2024-22365)
5.5
EPSS
0.04%
First published (updated )
Linux-PAMThe pam_sm_close_session function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.…
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux-PAMThe check_acl function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.2 and earli…
4.9
First published (updated )
Linux-PAMThe privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka …
4.7
First published (updated )
Linux-PAMThe privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka …
1.9
First published (updated )
Linux-PAMInteger signedness error in the _pam_StrTok function in libpam/pam_misc.c in Linux-PAM (aka pam) 1.0…
6.6
First published (updated )
Linux-PAMFrom the original report: "If SELinux is enabled, the _unix_run_helper_binary function in Linux-PAM …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux-PAMThe (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) before 1.1.2 use root privileges dur…
4.7
First published (updated )
Linux-PAMIt was reported that pam_env and pam_mail modules do not drop privileges before accessing users' fil…
1
First published (updated )
Linux-PAMLinux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shad…
4.6
First published (updated )
Linux-PAMThe pam_mail and pam_env modules in Linux-PAM before 1.1.2 did not drop privileges before accessing …
First published (updated )
Linux-PAMTim Brown reported [1] a minor security flaw in pam_xauth where the run_coprocess() function, which …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux-PAMThe pam_env module in Linux-PAM (aka pam) 1.1.2 and earlier reads the .pam_environment file in a use…
7.2
First published (updated )