2 matches found
CVE-2022-24755 Incorrect Authorization in Bareos Director
Bareos is open source software for backup, archiving, and recovery of data for operating systems. When Bareos Director = 18.2 = 18.2 but prior to 21.1.0, 20.0.6, and 19.2.12 is built and configured for PAM authentication, it will skip authorization checks completely. Expired accounts and accounts...
CVE-2022-24755
CVE-2022-24755 affects Bareos Director when built/configured for PAM: authorization checks were skipped, allowing login with expired accounts or passwords. Affected versions are Bareos Director >= 18.2 but before 21.1.0, 20.0.6, and 19.2.12. The root cause is missing authorization checks (circ...