PAM : Security Vulnerabilities, CVEs, CVSS score >= 3
PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows local and remote attackers to gain privileges as disabled users.
Max CVSS
7.5
EPSS Score
0.76%
Published
2002-10-28
Updated
2008-09-05
Linux PAM modules allow local users to gain root access using temporary files.
Max CVSS
6.2
EPSS Score
0.04%
Published
1998-12-01
Updated
2022-08-17
2 vulnerabilities found