VYPR
Critical severity9.8NVD Advisory· Published Aug 4, 2017· Updated Jun 17, 2026

CVE-2017-12424

CVE-2017-12424

Description

In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in ways unintended by the authors. Malformed input may lead to crashes (with a buffer overflow or other memory corruption) or other unspecified behaviors. This crosses a privilege boundary in, for example, certain web-hosting environments in which a Control Panel allows an unprivileged user account to create subaccounts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.