Описание
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used.
Ссылки
- Mailing ListPatchThird Party Advisory
- PatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Mailing ListPatchThird Party Advisory
- PatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.3.8 (включая) до 1.5.1 (включая)
cpe:2.3:a:pam_tacplus_project:pam_tacplus:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
Конфигурация 4Версия до 2020.1.2 (исключая)
cpe:2.3:a:arista:cloudvision_portal:*:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01239
Низкий
7.5 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 5 лет назад
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used.
CVSS3: 7.5
debian
больше 5 лет назад
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared se ...
CVSS3: 7.5
github
больше 3 лет назад
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used.
EPSS
Процентиль: 79%
0.01239
Низкий
7.5 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-532