Vulnerabilities (CVE)

Filtered by vendor Libpam4j Project Subscribe
Filtered by product Libpam4j
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-12197 3 Debian, Libpam4j Project, Redhat 3 Debian Linux, Libpam4j, Enterprise Linux 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information.