cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-4641,https://securityvulnerability.io/vulnerability/CVE-2023-4641,Shadow-utils: possible password leak during passwd(1) change,"A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on the second attempt, shadow-utils fails in cleaning the buffer used to store the first entry. This may allow an attacker with enough access to retrieve the password from the memory.",Red Hat,"shadow-utils,Red Hat Enterprise Linux 8,Red Hat Enterprise Linux 9,Red Hat Enterprise Linux 6,Red Hat Enterprise Linux 7",5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2023-12-27T16:15:00.000Z,0
CVE-2005-4890,https://securityvulnerability.io/vulnerability/CVE-2005-4890,,"There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via ""su - user -c program"". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to be read by the next process.",Red Hat,"shadow,sudo",7.8,HIGH,0.0006699999794363976,false,false,false,false,,false,false,2019-11-04T18:38:09.000Z,0