CVE-2022-34169 vulnerability for Apache Xalan Java XSLT in OpenJDK.
PAM uses Java runtimes for the PAM client, Windows Proxy, A2A client and also on the PAM appliance itself.
Does this CVE affect PAM?
PAM is not affected by CVE-2022-34169. It does not use Xalan in its code and does not have any use for XSLT.