CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

debian

shadow

3 known vulnerabilities · sorted by CVSS score

CVE-2005-4890

HIGH7.8

There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to be read by the next process.

debian / shadow+7

Local

Published Nov 4, 2019

CVE-2017-20002

HIGH7.8

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH (hence bypassing PAM's nullok_secure configuration). This notably affects environments such as virtual machines automatically generated with a default blank root password, allowing all local users to escalate privileges.

debian / shadow+1

Local

Published Mar 17, 2021

CVE-2013-4235

MEDIUM4.7

shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees

debian / shadow+7

Local

Published Dec 3, 2019