Exploit for Incorrect Authorization in Suse Pam-Config

CVE-2025-6018 + CVE-2025-6019 Privilege Escalation Guide 📋...

Exploit for Incorrect Authorization in Suse Pam-Config

https://cdn2.qualys.com/2025/06/17/suse15-pam-udisks-lpe.txt...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2026-1016)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : pam (EulerOS-SA-2026-1016)

According to the versions of the pam package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules PAM. This flaw allows a...

Exploit for CVE-2025-6018

🔒 CVE-2025-6018: Linux PAM to Root Privilege Escalation 🔒 ---...

SUSE-SU-2025:20533-1 Security update for pam-config

This update for pam-config fixes the following issues: - CVE-2025-6018: Stop adding pamenv in AUTH stack, and be sure to put this module at the really end of the SESSION stack. bsc1243226...

pam_pkcs11-0.6.13-2.1 on GA media (moderate)

pampkcs11-0.6.13-2.1 on GA media Announcement ID: openSUSE-SU-2025:15257-1 Rating: moderate Cross-References: CVE-2025-6018 CVSS scores: CVE-2025-6018 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2025-6018 SUSE : 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

gdm-48.0-10.1 on GA media (moderate)

gdm-48.0-10.1 on GA media Announcement ID: openSUSE-SU-2025:15219-1 Rating: moderate Cross-References: CVE-2025-6018 CVSS scores: CVE-2025-6018 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2025-6018 SUSE : 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected...

SUSE SLES15 Security Update : gdm (SUSE-SU-2025:02004-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02004-1 advisory. - CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted the preceding description block...

SUSE SLES15 Security Update : gdm (SUSE-SU-2025:02015-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02015-1 advisory. - CVE-2025-6018: pam.d: removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted the preceding description bloc...

SUSE SLES12 Security Update : pam (SUSE-SU-2025:02001-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:02001-1 advisory. - CVE-2025-6018: pamenv: Change the default to not read the user .pamenvironment file bsc1243226. - pamnamespace: convert functions that may operate o...

SUSE SLED15 / SLES15 Security Update : gdm (SUSE-SU-2025:02005-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02005-1 advisory. - CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted the preceding...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gdm (SUSE-SU-2025:02003-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02003-1 advisory. - CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted th...

SUSE SLES15 Security Update : pam-config (SUSE-SU-2025:02082-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:02082-1 advisory. - CVE-2025-6018: Stop adding pamenv in AUTH stack, and be sure to put this module at the really end of the SESSION stack bsc1243226. Tenabl...

SUSE SLES12 Security Update : pam_pkcs11 (SUSE-SU-2025:02032-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:02032-1 advisory. - CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted the preceding description block directly from th...

openSUSE Security Advisory (SUSE-SU-2025:02080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:02081-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:02082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:02080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : pam_pkcs11 (SUSE-SU-2025:02031-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02031-1 advisory. - CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Tenable has extracted the preceding description block...