CVE-2026-48064

CVE-2026-48064 - pam_usb: PAM_RHOST check skipped when deny_remote=false allows XDMCP authentication bypass

📅 2026-05-27 23:16:40

🔴 Critical 🔥 No MITRE CVE High ICS/OT OT/ICS

📋 الوصف الكامل

CVE ID :CVE-2026-48064 Published : May 27, 2026, 8:16 p.m. | 12 hours, 8 minutes ago Description :pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, when a PAM service is configured with deny_remote=false in pam_usb (commonly done for display managers such as gdm-password or lightdm to bypass process/TTY heuristics for local sessions),

💻 الأنظمة المتأثرة

pam_usb: PAM_RHOST check

⚠️ نوع التهديد

ICS/OT

🔗 CVE ID

CVE-2026-48064

📡 المصدر

MITRE CVE High

✅ الحلول والتخفيف

Refer to CVE-2026-48064 NVD advisory

🔗 المصدر الأصلي ← 📘 NVD ← ⚡ CISA KEV ←