Lucene search
+L

213 matches found

Huntr
Huntr
added 2022/03/06 11:18 p.m.24 views

Improper Authorization and possible DoS when using PAM Auth

Description When bareos versions after 18.2 are build and configured for PAM authentification it skips checking authorization completely. Expired accounts and accounts with expired passwords can still login. Further after wrong authentication or the code returns without releasing the PAM handle,...

6.8CVSS1AI score0.01996EPSS
Exploits1References1
Huntr
Huntr
added 2022/03/06 10:22 a.m.18 views

Improper Authorization

Description When Gitea is build and configured for PAM authentification it skips checking authorization completely. Therefore expired accounts and accounts with expired passwords can still login. Proof of Concept You can expire an account with chage -E0 and still login. Impact Since disabling an...

5.5CVSS2.3AI score0.00833EPSS
Exploits1References1
Huntr
Huntr
added 2022/03/05 7:20 p.m.24 views

Improper Authorization

Description When configuring saltstack to authentificate via the salt.auth.pam module. The authorization of a account validity is missing. Therefore expired accounts, or accounts with expired passwords, can still login. Proof of Concept Configure salt with salt.auth.pam and run it with an expired...

6.5CVSS1.8AI score0.01878EPSS
Exploits0References1
Veracode
Veracode
added 2020/04/10 12:19 a.m.24 views

Arbitrary Code Execution

top-pegasus is vulnerable to arbitrary code execution. A stack buffer overflow flaw was found in the PAM authentication code in the OpenPegasus CIM management server. An unauthenticated remote user could trigger this flaw and potentially execute arbitrary code with root privileges...

10CVSS5.9AI score0.07809EPSS
Exploits1References26Affected Software1
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.84 views

openssh security, bug fix, and enhancement update

7.4p1-21 + 0.10.3-2 - Avoid double comma in the default cipher list in FIPS mode 1722446 7.4p1-20 + 0.10.3-2 - Revert the updating of cached passwd structure 1712053 7.4p1-19 + 0.10.3-2 - Update cached passwd structure after PAM authentication 1674541 7.4p1-18 + 0.10.3-2 - invalidate supplemental...

5.3CVSS1.6AI score0.98631EPSS
Exploits23
Prion
Prion
added 2019/05/21 1:29 p.m.12 views

Information disclosure

A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpldoTest allowed users with Overall/Read permission to obtain limited information about the file /etc/shadow and the user Jenkins is running as...

4CVSS4.4AI score0.00786EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/05/21 1:29 p.m.24 views

CVE-2019-10319

A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpldoTest allowed users with Overall/Read permission to obtain limited information about the file /etc/shadow and the user Jenkins is running as...

4.3CVSS4.4AI score0.00786EPSS
Exploits0References2
CVE
CVE
added 2019/05/21 1:0 p.m.56 views

CVE-2019-10319

CVE-2019-10319 affects Jenkins PAM Authentication Plugin (versions 1.5 and earlier, except 1.4.1). The root cause is a missing permission check in PamSecurityRealm.doTest, which allowed users with Overall/Read permission to view limited information about /etc/shadow and the user Jenkins runs as. ...

4.3CVSS4.3AI score0.00786EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2019/05/02 5:29 a.m.66 views

Privilege Escalation

openssh is vulnerable to privilege escalation. A flaw was found in the way OpenSSH handled PAM authentication when using privilege separation. An attacker with valid credentials on the system and able to fully compromise a non-privileged pre-authentication process using a different flaw, could us...

1.9CVSS6.9AI score0.00378EPSS
Exploits0References25Affected Software1
Broadcom
Broadcom
added 2019/03/21 12:0 a.m.19 views

BSA-2019-766

Security Advisory ID : BSA-2019-766 Component : OpenSSH Revision : 1.0: Final A flaw was found in the way OpenSSH handled PAM authentication when using privilege separation. An attacker with valid credentials on the system and able to fully compromise a non-privileged pre-authentication process...

6.4CVSS7AI score0.00378EPSS
Exploits0
NVD
NVD
added 2018/10/10 6:29 p.m.18 views

CVE-2018-0052

If RSH service is enabled on Junos OS and if the PAM authentication is disabled, a remote unauthenticated attacker can obtain root access to the device. RSH service is disabled by default on Junos. There is no documented CLI command to enable this service. However, an undocumented CLI command...

9.3CVSS7.5AI score0.0485EPSS
Exploits0References2
Prion
Prion
added 2018/10/10 6:29 p.m.14 views

Authentication flaw

If RSH service is enabled on Junos OS and if the PAM authentication is disabled, a remote unauthenticated attacker can obtain root access to the device. RSH service is disabled by default on Junos. There is no documented CLI command to enable this service. However, an undocumented CLI command...

9.3CVSS8.1AI score0.0485EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/10/10 6:0 p.m.22 views

CVE-2018-0052 Junos OS: Unauthenticated remote root access possible when RSH service is enabled

If RSH service is enabled on Junos OS and if the PAM authentication is disabled, a remote unauthenticated attacker can obtain root access to the device. RSH service is disabled by default on Junos. There is no documented CLI command to enable this service. However, an undocumented CLI command...

7.2CVSS8.2AI score0.0485EPSS
Exploits0References2
CVE
CVE
added 2018/10/10 6:0 p.m.51 views

CVE-2018-0052

CVE-2018-0052 concerns Junos OS where, if RSH is enabled and PAM authentication is disabled, a remote unauthenticated attacker can obtain root access. RSH is disabled by default, and there is no documented CLI to enable it; an undocumented privileged command can enable RSH and disable PAM, exposi...

9.3CVSS7.6AI score0.0485EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/02/20 8:59 a.m.24 views

CVE-2016-7600

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "OpenPAM" component, which allows local users to obtain sensitive information by leveraging mishandling of failed PAM authentication by a sandboxed app...

6.2CVSS5.2AI score0.00351EPSS
Exploits0References3
CVE
CVE
added 2017/02/20 8:35 a.m.71 views

CVE-2016-7600

CVE-2016-7600 concerns Apple macOS OpenPAM: PAM authentication within sandboxed applications could fail insecurely, allowing a local unprivileged user to gain access to privileged applications. Affected: macOS Sierra 10.12.1 (and related 10.12.x updates as per Apple security content). Root cause ...

6.2CVSS5.4AI score0.00351EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.57 views

Scientific Linux Security Update : openssh on SL6.x i386/x86_64 (20160510)

Security Fixes : - It was found that the OpenSSH client did not properly enforce the ForwardX11Timeout setting. A malicious or compromised remote X application could possibly use this flaw to establish a trusted connection to the local X server, even if only untrusted X11 forwarding was requested...

9.8CVSS6.8AI score0.13736EPSS
Exploits0References5
Cent OS
Cent OS
added 2016/05/16 10:19 a.m.431 views

openssh, pam_ssh_agent_auth security update

CentOS Errata and Security Advisory CESA-2016:0741 An update for openssh is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7AI score0.13736EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/05/16 12:0 a.m.8 views

FreeBSD : OpenVPN -- Buffer overflow in PAM authentication and DoS through port sharing (0dc8be9e-19af-11e6-8de0-080027ef73ec)

Samuli Seppanen reports : OpenVPN 2.3.11 ... fixes two vulnerabilities: a port-share bug with DoS potential and a buffer overflow by user-supplied data when using pam authentication.... %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

5.8AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2016/05/10 6:29 p.m.119 views

Moderate: Red Hat Security Advisory: openssh security, bug fix, and enhancement update

An update for openssh is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS7AI score0.13736EPSS
Exploits0References10
Rows per page
Query Builder