Vulnerability in Suse Linux Enterprise
CVE-2011-3172
A vulnerability in pam_modules of SUSE Linux Enterprise allows attackers to log into accounts that should have been disabled. Affected releases are SUSE Linux Enterprise: versions prior to 12.
EPSS: 0.002 (44.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.4 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N.
Affected products
- Suse Linux Enterprise — versions unspecified
Weakness classification (CWE)
References
- build.opensuse.org/request/show/80346 (x_refsource_CONFIRM)
- bugzilla.suse.com/show_bug.cgi (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2011-3172?
- CVE-2011-3172 is a medium-severity vulnerability in Suse Linux Enterprise, classified under Missing Critical Step in Authentication. CVSS score: 5.4/10. Published 2018-06-08.
- How severe is CVE-2011-3172?
- Medium severity. CVSS v3 base score is 5.4 out of 10.