Vulnerability Description
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file.
Related Weaknesses (CWE)
References
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
FAQ
What is CVE-2024-36456?
CVE-2024-36456 is a documented vulnerability. This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file.
How severe is CVE-2024-36456?
CVSS scoring is not yet available for CVE-2024-36456. Check NVD for updates.
Is there a patch for CVE-2024-36456?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.