org.kohsuke:libpam4j@1.8 vulnerabilities

latest version

1.11

latest non vulnerable version

first published

12 years ago

latest version published

6 years ago

licenses detected

MIT
[1.5,)

package manager

View on Maven Repository

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.kohsuke:libpam4j package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Access Restriction Bypass `org.kohsuke:libpam4j` is a Java binding for libpam. Affected versions of the package are vulnerable to Access Restriction Bypass. A malicious user with a valid password for a disabled account can bypass the restrictions and get access to sensitive information. How to fix Access Restriction Bypass? There is no fix version for `libpam4j`.	[,1.10)

Go back to all versions of this package