CVE-2025-24531

Published January 16th, 2026

View on NVD ↗

CVSS v3

6.7

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error situations (such as an error triggered by a smartcard before login), allowing authentication bypass.

OpenSC/pam_pkcs11

This Linux-PAM login module allows a X.509 certificate based user login

GitHub