Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject sssd - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4341
The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login prevention) via a crafted packet.
Fedoraproject Sssd 1.5.0
Fedorahosted Sssd 1.4.0
Fedorahosted Sssd 1.4.1
Fedoraproject Sssd 1.3.0
NA
CVE-2010-2940
The auth_send function in providers/ldap/ldap_auth.c in System Security Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind are enabled, allows remote malicious users to bypass the authentication requirements of pam_authenticate via an empty password.
Fedoraproject Sssd 1.3.0
NA
CVE-2010-0014
System Security Services Daemon (SSSD) prior to 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate malicious users to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user...
Fedoraproject Sssd 0.5.0
Fedoraproject Sssd 0.3.1
Fedoraproject Sssd 0.7.1
Fedoraproject Sssd 0.2.1
Fedoraproject Sssd 0.3.0
Fedoraproject Sssd
Fedoraproject Sssd 0.99.0
Fedoraproject Sssd 0.4.0
Fedoraproject Sssd 0.3.2
Fedoraproject Sssd 0.99.1
Fedoraproject Sssd 0.3.3
Fedoraproject Sssd 0.6.0
Fedoraproject Sssd 0.4.1
Fedoraproject Sssd 0.7.0
Fedoraproject Sssd 0.6.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2