CVE-2011-3172— unix2_chkpwd do not check for a valid account
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2011-3172
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
unix2_chkpwd do not check for a valid account
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in pam_modules of SUSE Linux Enterprise allows attackers to log into accounts that should have been disabled. Affected releases are SUSE Linux Enterprise: versions prior to 12.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
认证中关键步骤缺失
Source: NVD (National Vulnerability Database)
Vulnerability Title
Micro Focus SUSE Linux Enterprise 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Micro Focus SUSE Linux Enterprise是英国Micro Focus公司的一套企业版Linux操作系统。 Micro Focus SUSE Linux Enterprise 12之前的版本中的pam_modules存在安全漏洞。攻击者可利用该漏洞登录本应禁用的账户。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise | unspecified ~ 12 | - |
II. Public POCs for CVE-2011-3172
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2011-3172
Please Login to view more intelligence information
- https://build.opensuse.org/request/show/80346x_refsource_CONFIRM
- https://bugzilla.suse.com/show_bug.cgi?id=707645x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2011-3172
Same Patch Batch · SUSE · 2018-06-08 · 3 CVEs total
| CVE-2011-4190 | Missing verification of host key for kdump server | |
| CVE-2012-0433 | insecure permissions on files containing confidential data |
IV. Related Vulnerabilities
Same vendor: SUSE
- CVE-2026-25702
nftables disabled due to incorrect kernel backport - CVE-2025-62879
Rancher Backup Operator pod's logs leak S3 tokens - CVE-2025-62878
Local Path Provisioner vulnerable to Path Traversal via para - CVE-2025-67601
Rancher CLI skips TLS verification on Rancher CLI login comm - CVE-2025-67860
NeuVector scanner insecurely handles passwords as command ar
V. Comments for CVE-2011-3172
No comments yet