Lucene search
K

354 matches found

OSV
OSV
added 2025/08/26 12:0 a.m.5 views

ALSA-2025:14557 Important: pam security update

Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle authentication. Security Fixes: linux-pam: Linux-pam directory Traversal CVE-2025-6020 For more details about the security issues, including the impact, a CVSS...

7.8CVSS7.1AI score0.0039EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/08/25 8:28 a.m.6 views

Security update for pam

This update for pam fixes the following issues: Improve previous CVE-2024-10041 fix which led to CPU performance issues bsc1232234 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

5.7CVSS7AI score0.00265EPSS
Exploits0References6
OSV
OSV
added 2025/08/25 8:28 a.m.1 views

SUSE-SU-2025:02970-1 Security update for pam

This update for pam fixes the following issues: - Improve previous CVE-2024-10041 fix which led to CPU performance issues bsc1232234...

4.7CVSS6.7AI score0.00265EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-2790

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 5.7.28 and prior. Easily...

6.5CVSS6AI score0.0179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2016-0639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availabili...

10CVSS7.5AI score0.10144EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/13 12:43 p.m.5 views

CVE-2025-8941

A flaw was found in linux-pam. The pamnamespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a "complete" fix for CVE-2025-6020. Mitigation Disable the pamnamespace...

7.8CVSS6.4AI score0.0039EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-22048

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.33 and prior. Difficul...

3.1CVSS5.9AI score0.00835EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.9 views

The vulnerability of the PAM-PKCS#11 authentication module in Linux operating systems allows a hacker to bypass the authentication process.

The vulnerability of the PAM-PKCS11 authentication module in Linux operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to bypass the authentication process remotely...

10CVSS7.5AI score0.00677EPSS
Exploits0References20Affected Software7
OSV
OSV
added 2025/07/23 3:15 p.m.7 views

CVE-2025-6018

A Local Privilege Escalation LPE vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules PAM. This flaw allows an unprivileged local attacker for example, a user logged in via SSH to obtain the elevated privileges normally reserved for a physically present,...

7.8CVSS5.8AI score0.00957EPSS
Exploits13References5
NVD
NVD
added 2025/07/23 3:15 p.m.7 views

CVE-2025-6018

A Local Privilege Escalation LPE vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules PAM. This flaw allows an unprivileged local attacker for example, a user logged in via SSH to obtain the elevated privileges normally reserved for a physically present,...

7.8CVSS0.00957EPSS
Exploits13References5
OSV
OSV
added 2025/07/11 12:31 p.m.3 views

OESA-2025-1831 pam security update

PAM Pluggable Authentication Modules is a system of libraries that handle the authentication tasks of applications services on the system. Security Fixes: A vulnerability was found in Linux-PAM up to 1.7.0 and classified as critical.Using CWE to declare the problem leads to CWE-22. The product us...

7.8CVSS7AI score0.0039EPSS
Exploits0References2
OSV
OSV
added 2025/07/11 12:31 p.m.3 views

OESA-2025-1830 pam security update

PAM Pluggable Authentication Modules is a system of libraries that handle the authentication tasks of applications services on the system. Security Fixes: A vulnerability was found in Linux-PAM up to 1.7.0 and classified as critical.Using CWE to declare the problem leads to CWE-22. The product us...

7.8CVSS7AI score0.0039EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.3 views

Linux-pam: linux-pam directory traversal

...

7.8CVSS8.8AI score0.0039EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/11 12:0 a.m.4 views

SSH-Passkeys: Leveraging Web Authentication for Passwordless SSH

We propose a method for using Web Authentication APIs for SSH authentication, enabling passwordless remote server login with passkeys. These are credentials that are managed throughout the key lifecycle by an authenticator on behalf of the user and offer strong security guarantees. Passwords rema...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/07/07 2:14 a.m.6 views

Important: Red Hat Security Advisory: pam security update

An update for pam is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.8CVSS7.2AI score0.0039EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/07 12:0 a.m.5 views

RHEL 8 : pam (RHSA-2025:10359)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:10359 advisory. Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle...

7.8CVSS7.8AI score0.0039EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/07 12:0 a.m.3 views

RHEL 8 : pam (RHSA-2025:10358)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:10358 advisory. Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle...

7.8CVSS7.8AI score0.0039EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/07 12:0 a.m.3 views

RHEL 8 : pam (RHSA-2025:10361)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:10361 advisory. Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle...

7.8CVSS7.8AI score0.0039EPSS
Exploits0References4
OSV
OSV
added 2025/07/04 2:43 p.m.3 views

OESA-2025-1746 pam security update

PAM Pluggable Authentication Modules is a system of libraries that handle the authentication tasks of applications services on the system. Security Fixes: Linux-pam is a plug-in and unplugged system authentication software for Linux teams. There is a security vulnerability in Linux-pam. This...

7.8CVSS6.8AI score0.0039EPSS
Exploits0References2
OSV
OSV
added 2025/07/04 2:43 p.m.3 views

OESA-2025-1744 pam security update

PAM Pluggable Authentication Modules is a system of libraries that handle the authentication tasks of applications services on the system. Security Fixes: Linux-pam is a plug-in and unplugged system authentication software for Linux teams. There is a security vulnerability in Linux-pam. This...

7.8CVSS6.8AI score0.0039EPSS
Exploits0References2
Rows per page
Query Builder