Описание
poppassd_pam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users.
Уязвимые конфигурации
Конфигурация 1Версия до 1.0 (включая)
cpe:2.3:a:gentoo:poppassd_pam:*:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00933
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
poppassd_pam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users.
EPSS
Процентиль: 76%
0.00933
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other