VulnerableCode Package Details - pkg:maven/org.kohsuke/libpam4j@1.5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.kohsuke/libpam4j@1.5

Essentials
History (4)

purl	pkg:maven/org.kohsuke/libpam4j@1.5

Next non-vulnerable version	1.10
Latest non-vulnerable version	1.10
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-tj32-sye9-gqfe Aliases: CVE-2017-12197 GHSA-x9rg-q5fx-fx66	It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information.	1.10 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T21:47:13.816974+00:00	GitLab Importer	Affected by	VCID-tj32-sye9-gqfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.kohsuke/libpam4j/CVE-2017-12197.yml	38.4.0
2026-04-11T23:03:03.259647+00:00	GitLab Importer	Affected by	VCID-tj32-sye9-gqfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.kohsuke/libpam4j/CVE-2017-12197.yml	38.3.0
2026-04-02T23:11:26.927149+00:00	GitLab Importer	Affected by	VCID-tj32-sye9-gqfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.kohsuke/libpam4j/CVE-2017-12197.yml	38.1.0
2026-04-01T17:31:18.699984+00:00	GitLab Importer	Affected by	VCID-tj32-sye9-gqfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.kohsuke/libpam4j/CVE-2017-12197.yml	38.0.0