Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/01 11:12 p.m.13 views

CVE-2025-29906

Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the tty configuration directive that can bypass /bin/login, i.e., a user can log in as any user without authentication. This issue has been patched in version 4.1...

8.6CVSS6.8AI score0.002EPSS
Exploits0References1
circl
circl
added 2025/04/29 11:48 p.m.7 views

CVE-2025-29906

creationtimestamp| type| source ---|---|--- 2025-04-29 23:48:13+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114423922060759169 2025-04-29 23:50:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnyhw3fwmw24 2025-04-30 01:00:20+00:00| published-proof-of-concept...

8.6CVSS4.8AI score0.002EPSS
Exploits0References6
nvd
nvd
added 2025/04/29 11:16 p.m.19 views

CVE-2025-29906

Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the tty configuration directive that can bypass /bin/login, i.e., a user can log in as any user without authentication. This issue has been patched in version 4.1...

8.6CVSS0.002EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/04/29 10:17 p.m.6 views

CVE-2025-29906 Finit bundled getty can bypass /bin/login

Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the tty configuration directive that can bypass /bin/login, i.e., a user can log in as any user without authentication. This issue has been patched in version 4.1...

8.6CVSS6.9AI score0.002EPSS
Exploits0References2
osv
osv
added 2025/04/29 10:17 p.m.7 views

CVE-2025-29906 Finit bundled getty can bypass /bin/login

Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the tty configuration directive that can bypass /bin/login, i.e., a user can log in as any user without authentication. This issue has been patched in version 4.1...

8.6CVSS6.5AI score0.002EPSS
Exploits0References4
debiancve
debiancve
added 2025/04/29 10:17 p.m.4 views

CVE-2025-29906

Finit is a fast init for Linux systems. Versions starting from 3.0-rc1 and prior to version 4.11 bundle an implementation of getty for the tty configuration directive that can bypass /bin/login, i.e., a user can log in as any user without authentication. This issue has been patched in version 4.1...

8.6CVSS5.3AI score0.002EPSS
Exploits0
Rows per page
Query Builder