{"id":"CVE-2024-10963","details":"A flaw was found in pam_access, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the system by pretending to be a trusted hostname, gaining unauthorized access. This issue poses a risk for systems that rely on this feature to control who can access certain services or terminals.","modified":"2026-04-10T05:08:12.415884Z","published":"2024-11-07T16:15:17Z","related":["ALSA-2024:10244","ALSA-2024:10379","SUSE-SU-2025:20104-1","SUSE-SU-2025:20229-1","openSUSE-SU-2024:14563-1"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10232"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10244"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10379"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10518"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10528"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:10852"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2324291"},{"type":"WEB","url":"https://access.redhat.com/security/cve/CVE-2024-10963"}],"schema_version":"1.7.5"}