CVE-2024-47191

Published: 2024-10-09T05:15Z

Last Modified: 2024-11-21T09:39Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

pam_oath.so in oath-toolkit 2.6.7 through 2.6.11 before 2.6.12 allows root privilege escalation because, in the context of PAM code running as root, it mishandles usersfile access, such as by calling fchown in the presence of a symlink. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt