A flaw was found in the Pacemaker configuration tool (pcs). The pcs daemon was allowing expired accounts, and accounts with expired passwords to login when using PAM authentication. Therefore, unprivileged expired accounts that have been denied access could still login.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-03-25T18:03:01

Updated: 2024-08-02T23:47:43.257Z

Reserved: 2022-03-22T00:00:00

Link: CVE-2022-1049

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-25T19:15:10.577

Modified: 2024-11-21T06:39:55.900

Link: CVE-2022-1049

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-03-17T00:00:00Z

Links: CVE-2022-1049 - Bugzilla