CVE-2021-28375 and does it effect PAM?

book

Article ID: 220651

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Request for information regarding CVE-2021-28375 and PAM (Privileged Access Management).

Environment

3.4.x

Resolution

PAM 3.4 uses a customized 4.14 kernel version and a customized Debian 9 (stretch) release, which should not be affected by this vulnerability. PAM is a closed appliance that does not allow user login. The vulnerability would not be a concern even if an affected kernel release was in use.