Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject sssd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4341
The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login prevention) via a crafted packet.
Fedorahosted Sssd 1.4.0
Fedorahosted Sssd 1.4.1
Fedoraproject Sssd 1.3.0
Fedoraproject Sssd 1.5.0
NA
CVE-2010-2940
The auth_send function in providers/ldap/ldap_auth.c in System Security Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind are enabled, allows remote malicious users to bypass the authentication requirements of pam_authenticate via an empty password.
Fedoraproject Sssd 1.3.0
NA
CVE-2010-0014
System Security Services Daemon (SSSD) prior to 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate malicious users to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user...
Fedoraproject Sssd
Fedoraproject Sssd 0.6.1
Fedoraproject Sssd 0.5.0
Fedoraproject Sssd 0.99.1
Fedoraproject Sssd 0.99.0
Fedoraproject Sssd 0.7.1
Fedoraproject Sssd 0.7.0
Fedoraproject Sssd 0.3.3
Fedoraproject Sssd 0.3.2
Fedoraproject Sssd 0.3.0
Fedoraproject Sssd 0.2.1
Fedoraproject Sssd 0.3.1
Fedoraproject Sssd 0.4.1
Fedoraproject Sssd 0.6.0
Fedoraproject Sssd 0.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2