Lucene search
K

45 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: pam (CVE-2024-10963)

The version of pam installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10963 advisory. - A flaw was found in pamaccess, where certain rules in its configuration file are mistakenly treated as hostname...

7.4CVSS8.1AI score0.00798EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 9 : pam-1.5.1-22.el9_5 (AXSA:2024-9416:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9416:06 advisory. pam: Improper Hostname Interpretation in pamaccess Leads to Access Control Bypass CVE-2024-10963 Tenable has extracted the preceding description block direct...

7.4CVSS7.3AI score0.00798EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : pam-1.3.1-36.el8_10 (AXSA:2024-9040:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9040:04 advisory. pam: libpam: Libpam vulnerable to read hashed password CVE-2024-10041 pam: Improper Hostname Interpretation in pamaccess Leads to Access Control...

7.4CVSS5.7AI score0.00798EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.2 views

TencentOS Server 4: pam (TSSA-2024:1020)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1020 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.4CVSS7.1AI score0.00798EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.10 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.0.1)

The version of AOS installed on the remote host is prior to 7.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.0.1 advisory. - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900 -...

9.8CVSS7.4AI score0.62474EPSS
Exploits16References63
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: pam (TSSA-2024:1084)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1084 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.4CVSS6.8AI score0.00798EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/09 12:0 a.m.3 views

NewStart CGSL MAIN 7.02 : pam Multiple Vulnerabilities (NS-SA-2025-0083)

The remote NewStart CGSL host, running version MAIN 7.02, has pam packages installed that are affected by multiple vulnerabilities: - A flaw was found in pamaccess, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the...

7.4CVSS6.7AI score0.00798EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2024-4d4d946073)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.2AI score0.00798EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1571)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.5AI score0.00798EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1555)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.5AI score0.00798EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1385)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.5AI score0.00798EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.5 views

Alibaba Cloud Linux 3 : 0264: pam (ALINUX3-SA-2024:0264)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0264 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-10041: A vulnerability was found ...

7.4CVSS6.8AI score0.00798EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/02 5:41 p.m.32 views

Security Bulletin: IBM Watson Speech Services Cartridge v5.1.1 is vulnerable to multiple Base OS issues

Summary IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues. We have updated the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediation below. Vulnerability Details CVEID:CVE-2019-12900...

9.8CVSS8.9AI score0.14859EPSS
Exploits5Affected Software1
OSV
OSV
added 2025/03/17 8:16 p.m.17 views

RLSA-2024:10244 Important: pam:1.5.1 security update

Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle authentication. Security Fixes: pam: Improper Hostname Interpretation in pamaccess Leads to Access Control Bypass CVE-2024-10963 For more details about the...

7.4CVSS6.9AI score0.00798EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/03/17 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1243)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.6AI score0.00798EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/03/17 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1277)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.6AI score0.00798EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/03/17 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2025-1228)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.6AI score0.00798EPSS
Exploits0References2
OSV
OSV
added 2025/03/05 2:53 p.m.2 views

SUSE-SU-2025:20229-1 Security update for pam

This update for pam fixes the following issues: - CVE-2024-10963: Fixed improper hostname interpretation inpamaccess that could lead to access control bypass bsc1233078...

7.4CVSS6.9AI score0.00798EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2025/03/01 9:41 p.m.18 views

Advisory ROSA-SA-2025-2755

Software: pam 1.3.1 OS: ROSA Virtualization 2.1 packageevrstring: pam-1.3.1-36.rv3 CVE-ID: CVE-2024-10041 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in PAM allows an attacker to access sensitive information stored in memory through the execution of a victim program by sending...

7.4CVSS5.8AI score0.00798EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/27 3:53 a.m.24 views

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to PAM, go-git and Golang.org/X/Crypto

Summary PAM, go-git, Golang.org/X/Crypto and IBM MQ used by IBM MQ Operator and Queue Manager container images are vulnerable to denial of service due to improper memory allocation, spoofing attacks, and providing weaker than expected security which might allow an attacker to execute arbitrary co...

9.8CVSS9.5AI score0.03153EPSS
Exploits2Affected Software1
Rows per page
Query Builder