CVE-2019-16729
Description
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.112
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Enables PAM modules to be written in Python (USN-4552-2) libpam-python_1.0.4-1.1+deb8u1build0.16.04.1_i386.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-2) libpam-python_1.0.4-1.1+deb8u1build0.16.04.1_amd64.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-3) libpam-python_1.0.4-1.1+deb8u1ubuntu0.1_i386.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-3) libpam-python_1.0.4-1.1+deb8u1ubuntu0.1_amd64.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-3) libpam-python_1.0.6-1.1+deb10u1ubuntu0.1_i386.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-3) libpam-python_1.0.6-1.1+deb10u1ubuntu0.1_amd64.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-1) libpam-python_1.0.6-1.1+deb10u1build0.18.04.1_i386.deb | Linux |
| Enables PAM modules to be written in Python (USN-4552-1) libpam-python_1.0.6-1.1+deb10u1build0.18.04.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234