RSS   Vulnerabilities for 'Libpam4j'   RSS

2018-01-18
 
CVE-2017-12197

CWE-20
 

 
It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information.

 


Copyright 2019, cxsecurity.com

 

Back to Top