Known Vulnerabilities for Shadow by Shadow Project
Listed below are 4 of the newest known vulnerabilities associated with "Shadow" by "Shadow Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-23402 | In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting ... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-23401 | In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Drop/zap existing present SPTE even when c... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-23378 | In the Linux kernel, the following vulnerability has been resolved: net/sched: act_ife: Fix metalist update behavior Whenev... | Not Provided | 2026-03-25 | 2026-04-02 |
| CVE-2025-24765 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in RobMarsh Image Shadow image-s... | Not Provided | 2025-06-27 | 2026-04-01 |
| CVE-2019-19882 | shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root... | 7.8 - HIGH | 2019-12-18 | 2020-08-25 |
| CVE-2018-7169 | An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is setuid and allows an unprivileged user to be placed in ... | 5.3 - MEDIUM | 2018-02-15 | 2019-10-03 |
| CVE-2017-12424 | In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in ways unintended by the author... | 9.8 - CRITICAL | 2017-08-04 | 2021-03-23 |
| CVE-2016-6252 | Integer overflow in shadow 4.2.1 allows local users to gain privileges via crafted input to newuidmap. | 7.8 - HIGH | 2017-02-17 | 2017-11-04 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Shadow Project | Shadow | 4.8.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.8 | All | All | All |
| Application | Shadow Project | Shadow | 4.7 | All | All | All |
| Application | Shadow Project | Shadow | 4.6 | All | All | All |
| Application | Shadow Project | Shadow | 4.5 | All | All | All |
| Application | Shadow Project | Shadow | 4.4 | All | All | All |
| Application | Shadow Project | Shadow | 4.3.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.3.0 | All | All | All |
| Application | Shadow Project | Shadow | 4.2.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.5.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.5 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.4.2 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.4.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.4 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.3.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.3 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.2.2 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.2.1 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.2 | All | All | All |
| Application | Shadow Project | Shadow | 4.1.1 | All | All | All |