CVE-2026-54411 | Linux-PAM up to 1.7.2 pam_userdb.c strncmp timing discrepancy (EUVD-2026-36662)

Inserito da Angelo Barbosa | Giu 14, 2026 | CVE

A vulnerability identified as problematic has been detected in Linux-PAM up to 1.7.2. This issue affects the function strncmp of the file modules/pam_userdb/pam_userdb.c. Performing a manipulation results in observable timing discrepancy.

This vulnerability is cataloged as CVE-2026-54411. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-54411 | Linux-PAM up to 1.7.2 pam_userdb.c strncmp timing discrepancy (EUVD-2026-36662)

Post correlati

CVE-2024-1012 | Wanhu ezOFFICE 11.1.0 wf_printnum.jsp recordId sql injection

CVE-2026-5605 | Tenda CH22 1.0.0.1 /goform/WrlExtraSet formWrlExtraSet GO stack-based overflow

CVE-2024-3272 | D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L up to 20240403 HTTP GET Request /cgi-bin/nas_sharing.cgi user hard-coded credentials

CVE-2026-22782 | RustFS up to 1.0.0-alpha.79 http_auth.rs log file