CVE-2026-44711
Authentication Bypass in pam_usb via Symlink Attacks
Publication date: 2026-05-27
Last updated on: 2026-05-27
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-59 | The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource. |
| CWE-287 | When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability exists in pam_usb, a tool that provides hardware authentication for Linux using ordinary removable media. Prior to version 0.8.7, attackers could perform symlink attacks on the pad directory and pad files. These attacks enable authentication bypass and allow corruption of root files.
How can this vulnerability impact me? :
This vulnerability can allow an attacker to bypass authentication mechanisms, potentially gaining unauthorized access. Additionally, it can lead to corruption of root files, which may compromise system integrity and availability.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, upgrade pam_usb to version 0.8.7 or later, where the symlink attack issue enabling authentication bypass and root file corruption has been fixed.