High severity7.5NVD Advisory· Published Jun 6, 2020· Updated Jun 17, 2026
CVE-2020-13881
CVE-2020-13881
Description
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- pam_tacplus/pam_tacplusdescription
- Range: 1.3.8 - 1.5.1
Patches
Vulnerability mechanics
References
7- www.openwall.com/lists/oss-security/2020/06/08/1nvdMailing ListPatchThird Party Advisory
- github.com/kravietz/pam_tacplus/commit/4a9852c31c2fd0c0e72fbb689a586aabcfb11cb0nvdPatchThird Party Advisory
- github.com/kravietz/pam_tacplus/issues/149nvdIssue TrackingThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/06/msg00007.htmlnvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts-announce/2021/08/msg00006.htmlnvdMailing ListThird Party Advisory
- usn.ubuntu.com/4521-1/nvdThird Party Advisory
- www.arista.com/en/support/advisories-notices/security-advisories/11705-security-advisory-50nvdThird Party Advisory
News mentions
0No linked articles in our index yet.