Bareos is a suite of open source data backup storage and recovery software from Bareos, a German company. Bareos suffers from an access control error vulnerability that stems from the fact that the affected product will completely skip authorization checks when built and configured for PAM authentication, which could be exploited by an attacker to cause expired accounts and accounts with expired passwords to still be able to log in.
CPE | Name | Operator | Version |
---|---|---|---|
bareos bareos | lt | 21.1.0 | |
bareos bareos | lt | 20.0.6 | |
bareos bareos | lt | 19.2.12 | |
bareos bareos | eq | 18.2 |