CRITICAL9.8CVE-2011-4120Yubico PAM Module before 2.10 performed user authentication when 'use_first_pass' PAM configuration option was not used and the module was…
from 0, < 2.10-1
HIGH8.2CVE-2018-9275In check_user_token in util.c in the Yubico PAM module (aka pam_yubico) 2.18 through 2.25, successful logins can leak file descriptors to t…