Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-25327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from...

5.5CVSS5.5AI score0.0011EPSS
Exploits0References3
OSV
OSV
added 2022/03/01 9:5 p.m.34 views

GHSA-P93V-M2R2-4387 Denial of service via insufficient metadata validation

The PAM module for fscrypt through v0.3.2 doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from...

5.5CVSS5.4AI score0.0011EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/03/01 9:5 p.m.28 views

Denial of service via insufficient metadata validation

The PAM module for fscrypt through v0.3.2 doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from...

5.5CVSS3.1AI score0.0011EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/02/25 11:0 a.m.94 views

CVE-2022-25327

CVE-2022-25327 affects the PAM module for fscrypt, where inadequate validation of fscrypt metadata files lets a local user craft malicious metadata to cause a denial of service, preventing other users from logging in. The documented remediation is to upgrade to version 0.3.3 or above. The connect...

5.5CVSS5.5AI score0.0011EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/25 11:0 a.m.6 views

CVE-2022-25327 Local Denial of Service in fscrypt PAM module

The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from logging into the...

5.5CVSS5.3AI score0.0011EPSS
Exploits0References1
Rows per page
Query Builder