What is the CVSS score of CVE-2026-44709?

CVE-2026-44709 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of pam_usb are affected by CVE-2026-44709?

A privilege escalation vulnerability in pam_usb authentication software allows local users to gain administrative access through environment variable manipulation.. A patch is available.

How to fix or mitigate CVE-2026-44709?

Within 24 hours: Inventory all systems running pam_usb and assess user access profiles to identify exposure. Within 7 days: Upgrade all affected systems to pam_usb version 0.8.7. Within 30 days: Verify complete patch deployment across production, staging, and development environments, and confirm removal of vulnerable versions.

pam_usb CVE-2026-44709

EUVD-2026-32661 HIGH

OS Command Injection (CWE-78)

2026-05-27 security-advisories@github.com

Command Injection

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch available

May 27, 2026 - 22:04 EUVD

Analysis Generated

May 27, 2026 - 21:31 vuln.today

CVE Published

May 27, 2026 - 21:16 nvd

HIGH 7.8

DescriptionNVD

pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, pamusb-pinentry reads the PINENTRY_FALLBACK_APP environment variable and executes it directly without any validation. Any process that can set environment variables before pamusb-pinentry is invoked can point PINENTRY_FALLBACK_APP at an arbitrary binary or script and have it executed with the privileges of the pam_usb tool chain. This vulnerability is fixed in 0.8.7.

AnalysisAI

Local privilege escalation in pam_usb prior to 0.8.7 lets a low-privileged user gain the elevated privileges of the pam_usb tool chain by abusing the pamusb-pinentry helper. The helper trusts the PINENTRY_FALLBACK_APP environment variable and executes its value directly, so any process able to set that variable before pamusb-pinentry runs can have an arbitrary binary executed. …

RemediationAI

Within 24 hours: Inventory all systems running pam_usb and assess user access profiles to identify exposure. Within 7 days: Upgrade all affected systems to pam_usb version 0.8.7. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-44709 vulnerability details – vuln.today

Back

pam_usb CVE-2026-44709

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code