CVE-2026-44711: CWE-59: Improper Link Resolution Before File Access ('Link Following') in mcdope pam_usb
pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7.
AI Analysis
Technical Summary
The vulnerability CVE-2026-44711 affects pam_usb, a Linux hardware authentication module using removable media. Versions before 0.8.7 improperly resolve symbolic links in pad directories and files, enabling attackers with local privileges to bypass authentication and corrupt root files. The CVSS 3.1 score is 7.9 (high), reflecting local attack vector, low complexity, low privileges required, user interaction needed, and a scope change with high impact on integrity and availability. The vulnerability is addressed in pam_usb version 0.8.7.
Potential Impact
Successful exploitation allows an attacker with local privileges to bypass authentication mechanisms and corrupt root files, potentially compromising system integrity and availability. There is no indication of confidentiality impact. No known exploits in the wild have been reported.
Mitigation Recommendations
Upgrade pam_usb to version 0.8.7 or later where this vulnerability is fixed. Since no official patch link or advisory is provided, verify the upgrade from trusted sources. Until upgraded, restrict local user access to prevent exploitation. Patch status is not yet confirmed via vendor advisory; check official vendor communications for current remediation guidance.
CVE-2026-44711: CWE-59: Improper Link Resolution Before File Access ('Link Following') in mcdope pam_usb
Description
pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7.
CVSS v3.1
Score 7.9high
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-44711 affects pam_usb, a Linux hardware authentication module using removable media. Versions before 0.8.7 improperly resolve symbolic links in pad directories and files, enabling attackers with local privileges to bypass authentication and corrupt root files. The CVSS 3.1 score is 7.9 (high), reflecting local attack vector, low complexity, low privileges required, user interaction needed, and a scope change with high impact on integrity and availability. The vulnerability is addressed in pam_usb version 0.8.7.
Potential Impact
Successful exploitation allows an attacker with local privileges to bypass authentication mechanisms and corrupt root files, potentially compromising system integrity and availability. There is no indication of confidentiality impact. No known exploits in the wild have been reported.
Mitigation Recommendations
Upgrade pam_usb to version 0.8.7 or later where this vulnerability is fixed. Since no official patch link or advisory is provided, verify the upgrade from trusted sources. Until upgraded, restrict local user access to prevent exploitation. Patch status is not yet confirmed via vendor advisory; check official vendor communications for current remediation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-07T17:07:09.318Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a175c27e29bf47b50eb608c
Added to database: 5/27/2026, 9:03:35 PM
Last enriched: 5/27/2026, 9:33:56 PM
Last updated: 5/29/2026, 4:56:53 PM
Views: 9
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.