1 results (0.003 seconds)
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-12197 – libpam4j: Account check bypass
https://notcve.org/view.php?id=CVE-2017-12197
17 Oct 2017 — It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information. Se ha descubierto que las versiones hasta, e incluyendo, la 1.8 de libpam4j no validan adecuadamente las cuentas de usuario al autenticarse, Un usuario con una contraseña válida para una cuenta deshabilitada podría omitir las restricciones de seguridad y acce... • https://access.redhat.com/errata/RHSA-2017:2904 • CWE-20: Improper Input Validation CWE-863: Incorrect Authorization •