Every CVE whose affected-product data names Eyrie Pam-krb5, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2009-0360 — CVSS 6.2 (medium): Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use…
CVE-2009-1384 — CVSS 5.0 (medium): pam_krb5 2.2.14 through 2.3.4, as used in Red Hat Enterprise Linux (RHEL) 5, generates different password prompts depending on whether the…
CVE-2009-0361 — CVSS 4.6 (medium): Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to…