Maven package
org.kohsuke/libpam4j
pkg:maven/org.kohsuke/libpam4j
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-12197 | — | < 1.10 | 1.10 | Jan 18, 2018 | It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information. |
- CVE-2017-12197Jan 18, 2018affected < 1.10fixed 1.10
It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information.