CVE-2026-48983 | mcdope pam_usb up to 0.9.1 on Linux lstat toctou (GHSA-4j8q-67fq-3xc3)

June 19, 2026 Yanac

A vulnerability described as critical has been identified in mcdope pam_usb up to 0.9.1 on Linux. Affected is the function lstat. Such manipulation leads to time-of-check time-of-use.

This vulnerability is uniquely identified as CVE-2026-48983. Local access is required to approach this attack. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More