Astra Linux - уязвимость в 389-ds-base

A vulnerability was discovered in the 389 Directory Server, which allows expired passwords to access the database, resulting in improper authentication...

Astra Linux - уязвимость в pcs

A flaw was discovered in the Pacemaker configuration tool pcs. The pcs daemon allowed expired accounts, as well as accounts with expired passwords, to log in when using PAM authentication. As a result, unprivileged expired accounts that had been denied access could still log in...

EUVD-2025-38310

IBM Db2 10.5.0 through 10.5.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux could allow an authenticated user to regain access after account lockout due to password use after expiration date...

EUVD-2013-5264

Malware in sbrugna...

EUVD-2016-2946

Malware in sbrugna...

EUVD-2021-26229

Malware in sbrugna...

EUVD-2002-1534

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2022-24755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bareos is open source software for backup, archiving, and recovery of data for operating systems. When Bareos Director = 18.2 = 18.2 but prior to 21.1.0, 20.0.6...

Linux Distros Unpatched Vulnerability : CVE-2022-0996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication. CVE-2022-0996 Note...

Linux Distros Unpatched Vulnerability : CVE-2022-0093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. GitLab allows a user with an...

Devolutions Server 安全漏洞

Devolutions Server is an application from Devolutions Canada Inc. It provides a full-featured shared account and password management solution. A security vulnerability exists in Devolutions Server version 2025.2.5.0 and prior versions, which stems from a deadlock issue with the PAM autosign-in...

AZL-60438 CVE-2025-2291 affecting package pgbouncer for versions less than 1.24.1-1

Password can be used past expiry in PgBouncer due to authquery not taking into account Postgres its VALID UNTIL value, which allows an attacker to log in with an already expired password...

PT-2025-16876 · Pgbouncer +3 · Pgbouncer +3

Name of the Vulnerable Software and Affected Versions: PgBouncer versions prior to 1.24.1 Description: The issue allows an attacker to log in with an already expired password due to PgBouncer's auth query not considering Postgres's VALID UNTIL value. This enables the use of passwords past their...

USN-6876-1 kopanocore vulnerabilities

It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information. This issue only affected Ubuntu 18.04 LTS. CVE-2019-19907 It was discovered that Kopano Core allowed possible authentication with expired passwords. An attacker could u...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Kopano Core vulnerabilities (USN-6876-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6876-1 advisory. It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information...

Rocky Linux 9 : 389-ds-base (RLSA-2022:8162)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:8162 advisory. - A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a...

SUSE CVE-2011-4966

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

SUSE CVE-2022-0996

A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication...

389-ds-base: expired password was still allowed to access the database

A vulnerability was found in the 389 Directory Server. This issue allows expired passwords to access the database, causing improper authentication...

AlmaLinux 9 : 389-ds-base (ALSA-2022:8162)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:8162 advisory. - A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denia...