Lucene search
K

11 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/28 4:37 a.m.10 views

CVE-2026-9798

A flaw was found in Keycloak, an open-source identity and access management solution. When a user account is temporarily locked due to repeated failed login attempts, an attacker with valid client credentials can exploit the Client-Initiated Backchannel Authentication CIBA flow to bypass this...

4.3CVSS5.7AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-1945

Malware in sbrugna...

4.4CVSS6.1AI score0.00313EPSS
Exploits2References9
Veeam
Veeam
added 2024/09/16 12:0 a.m.74 views

How to Reset Account Lockout for 'Managed Hardened Repository ISO by Veeam'

Purpose This article documents how to unlock the accounts used with the Managed Hardened Repository ISO by Veeam, veeamsvc or vhradmin, when they become locked out. The Managed Hardened Repository ISO by Veeam deploys Rocky Linux with the DISA STIG security profile, which utilizes faillock to loc...

7AI score
Exploits0Affected Software1
NCSC
NCSC
added 2022/06/24 12:0 a.m.3 views

Malleability remedied in Salt

Salt Project has fixed a vulnerability in Salt. A malicious person who has a locked user account can still perform actions under privileges of this account. Systems are vulnerable only when PAM authentication is used. Salt Project has released updates to fix the vulnerability fix in Salt 3002.9,...

8.8CVSS7AI score0.01878EPSS
Exploits0
Citrix
Citrix
added 2017/03/22 12:0 a.m.7 views

Citrix Receiver: Difference of Logon Experience When Logon StoreFront with a Locked Account by Using Username/password and Smart Card

This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information This article describes user experience of using Pass-throughwith username and password or smart card log...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2011/10/28 4:42 p.m.18 views

Facebook Letting Users Designate 'Guardian Angel' Friends To Restore Locked Accounts

Social networking giant Facebook said on Thursday that it is testing a feature that will allow users to designate certain friends as ‘guardian angels’ entrusted with helping the user to recover a locked or hijacked account. The company, which has already experimented with forms of “social...

1.3AI score
Exploits0References4
OSV
OSV
added 2008/07/28 5:41 p.m.3 views

DEBIAN-CVE-2008-1946

The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a 1 locked or 2 expired account by entering the account name on the command line, related to improper use of the pamsucceedif.so module...

4.4CVSS6.6AI score0.00313EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2008/07/28 5:41 p.m.23 views

CVE-2008-1946

The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a 1 locked or 2 expired account by entering the account name on the command line, related to improper use of the pamsucceedif.so module...

4.4CVSS5.9AI score0.00313EPSS
Exploits2References1
Cvelist
Cvelist
added 2008/07/28 5:0 p.m.41 views

CVE-2008-1946

The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a 1 locked or 2 expired account by entering the account name on the command line, related to improper use of the pamsucceedif.so module...

6.3AI score0.00313EPSS
Exploits2References6
Debian CVE
Debian CVE
added 2008/07/28 5:0 p.m.21 views

CVE-2008-1946

The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a 1 locked or 2 expired account by entering the account name on the command line, related to improper use of the pamsucceedif.so module...

4.4CVSS6.4AI score0.00313EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2008/07/24 5:2 p.m.4 views

/etc/pam.d/su is wrong in RHEL-4.6

The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a 1 locked or 2 expired account by entering the account name on the command line, related to improper use of the pamsucceedif.so module...

4.4CVSS5.8AI score0.00313EPSS
Exploits2References4
Rows per page
Query Builder