Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/30 12:0 a.m.6 views

SUSE SLED15 / SLES15 Security Update : apparmor (SUSE-SU-2025:01511-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01511-1 advisory. - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References4
OSV
OSV
added 2025/05/29 9:39 a.m.3 views

SUSE-SU-2025:01511-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS6.7AI score0.00265EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/05/14 9:6 a.m.1 views

Security update for apparmor

This update for apparmor fixes the following issues: Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678 Patch Instructions: To install this SUSE update use the SUSE...

5.7CVSS6.5AI score0.00265EPSS
Exploits0References4
OSV
OSV
added 2025/05/14 9:6 a.m.4 views

SUSE-SU-2025:1549-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS6.7AI score0.00265EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/09 12:0 a.m.7 views

SUSE SLES15: apache2-mod_apparmor / apparmor-abstractions / apparmor-docs / etc (SUSE-SU-2025:1512-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1512-1 advisory. - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/09 12:0 a.m.4 views

SUSE SLES15: apache2-mod_apparmor / apparmor-abstractions / apparmor-docs / etc (SUSE-SU-2025:1505-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1505-1 advisory. - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/09 12:0 a.m.5 views

SUSE SLED15: apache2-mod_apparmor / apparmor-abstractions / apparmor-docs / etc (SUSE-SU-2025:1511-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1511-1 advisory. - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References4
OSV
OSV
added 2025/05/08 7:35 p.m.2 views

SUSE-SU-2025:1517-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS5.4AI score0.00265EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/05/07 7:36 p.m.1 views

Security update for apparmor

This update for apparmor fixes the following issues: Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678 Patch Instructions: To install this SUSE update use the SUSE...

5.7CVSS6.5AI score0.00265EPSS
Exploits0References4
OSV
OSV
added 2025/05/07 7:36 p.m.3 views

SUSE-SU-2025:1512-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS5.4AI score0.00265EPSS
Exploits0References3
OSV
OSV
added 2025/05/07 7:35 p.m.3 views

SUSE-SU-2025:1511-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS5.4AI score0.00265EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/05/07 12:6 p.m.1 views

Security update for apparmor

This update for apparmor fixes the following issues: Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678 Patch Instructions: To install this SUSE update use the SUSE...

5.7CVSS6.5AI score0.00265EPSS
Exploits0References4
OSV
OSV
added 2025/05/07 12:6 p.m.2 views

SUSE-SU-2025:1505-1 Security update for apparmor

This update for apparmor fixes the following issues: - Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678...

4.7CVSS5.4AI score0.00265EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2007/11/08 12:0 a.m.39 views

RHEL 5 : pam (RHSA-2007:0555)

Updated pam packages that fix two security flaws, resolve several bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pluggable Authentication Modules PAM provide a system...

4.3CVSS6.4AI score0.02342EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2007/11/07 9:0 a.m.54 views

Moderate: Red Hat Security Advisory: pam security, bug fix, and enhancement update

Updated pam packages that fix two security flaws, resolve several bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pluggable Authentication Modules PAM provide a system...

4.3CVSS6.5AI score0.02342EPSS
Exploits0References11
NVD
NVD
added 2005/11/01 12:47 p.m.25 views

CVE-2005-2977

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unixchkpwd, which does not log failed guesses or delay its responses...

2.1CVSS6.3AI score0.00428EPSS
Exploits0References12
CVE
CVE
added 2005/11/01 2:0 a.m.83 views

CVE-2005-2977

The CVE-2005-2977 issue affects the SELinux-enabled PAM, specifically PAM before 0.78 r3. The unix_chkpwd helper can be misused by a local attacker to brute-force check passwords without logging failed attempts or delaying responses, enabling partial disclosure risk (confidentiality impact) on lo...

2.1CVSS6.2AI score0.00428EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2005/11/01 2:0 a.m.26 views

CVE-2005-2977

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unixchkpwd, which does not log failed guesses or delay its responses...

6.2AI score0.00428EPSS
Exploits0References12
securityvulns
securityvulns
added 2005/10/28 12:0 a.m.24 views

SELinux PAM passwords bruteforcing

There is no delay or logging for invalid password in unixchkpwd utility...

1.4AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2005/10/28 12:0 a.m.17 views

Fedora Core 4 : pam-0.79-9.6 (2005-1031)

This update fixes a security bug in unixchkpwd allowing brute-force attacks against passwords in /etc/shadow by a regular user when SELinux is enabled. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempte...

5.5AI score
Exploits0References1
Rows per page
Query Builder