Vulnerability DatabaseCVE-2022-1049

CVE-2022-1049:
Alma Linux vulnerability analysis and mitigation

Overview

CVE-2022-1049 is a security vulnerability discovered in the Pacemaker configuration tool (pcs). The vulnerability allows expired accounts and accounts with expired passwords to log in when using PAM authentication, potentially enabling unauthorized access to the system (Red Hat Portal, NVD).

Technical details

The vulnerability exists in the pcs daemon's authentication mechanism where it improperly handles PAM authentication for expired accounts. This flaw specifically affects the authentication process, allowing unprivileged expired accounts that should have been denied access to still successfully log in to the system (Debian Security).

Impact

The vulnerability could allow unauthorized access to the system by users whose accounts have expired or whose passwords have expired, potentially compromising system security by bypassing intended access restrictions (Red Hat Portal).

Mitigation and workarounds

The vulnerability has been fixed in multiple versions across different distributions. For Debian 10 (buster), the fix is available in version 0.10.1-2+deb10u1, and for Debian 11 (bullseye), in version 0.10.8-1+deb11u1. Red Hat has addressed this issue in pcs version 0.10.14-5.el8 (Debian LTS, Red Hat Advisory).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer? See which CVEs are exploitable in your environment.

Get a CVE Assessment

8.8

Score

Published March 25, 2022

Severity HIGH

CNA Score N/A

Affected Technologies

Alma Linux
Alibaba Cloud Linux (Aliyun Linux)

Has Public Exploit Yes

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 53.4

Exploitation Probability (EPSS) 0.3

Affected packages and libraries

pcs
pcs-snmp

Sources

NVD
AlmaLinux Security Advisory
- AlmaLinux 8 Severity MEDIUMHas FixAdded at: Nov 13, 2022
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Nov 19, 2022
Debian Security Tracker
- Debian 10, 11, 12 Severity HIGHHas FixAdded at: Mar 28, 2022
- Debian 13 Severity HIGHHas FixAdded at: Jun 11, 2023
- Debian 14 Severity HIGHHas FixAdded at: Aug 10, 2025
Echo
- Echo Severity HIGHHas FixAdded at: Nov 18, 2025
Red Hat Errata
- Red Hat 7 Severity MEDIUMNo FixAdded at: Mar 25, 2022
- Red Hat 8 Severity MEDIUMHas FixAdded at: Mar 25, 2022
- Red Hat 9 Severity MEDIUMHas FixAdded at: Sep 06, 2022
Ubuntu Security Tracker
- Ubuntu 16.04 Severity MEDIUMNo FixAdded at: Nov 13, 2023
- Ubuntu 18.04 Severity MEDIUMNo FixAdded at: Mar 04, 2023
- Ubuntu 20.04, 22.04 Severity MEDIUMHas FixAdded at: Mar 04, 2023

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Alma Linux vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-66287	HIGH	8.8	Alma Linux	webkit2gtk3-jsc	No	Yes	Dec 04, 2025
CVE-2025-13502	HIGH	7.5	Alma Linux	webkitgtk4-devel	No	Yes	Nov 25, 2025
CVE-2025-13947	HIGH	7.4	Alma Linux	javascriptcoregtk4.1	No	Yes	Dec 03, 2025
CVE-2025-64505	MEDIUM	6.1	NixOS	mingw64-libpng-debuginfo	No	Yes	Nov 25, 2025
CVE-2025-40185	N/A	N/A	Linux Kernel	linux-fips	No	Yes	Nov 12, 2025