Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xscreensaver project xscreensaver vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-31523
The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users to gain privileges because this is arguably incompatible with the design of the Mesa 3D Graphics library dependency.
Xscreensaver Project Xscreensaver 5.42+dfsg1-1
4.6
CVSSv3
CVE-2021-34557
XScreenSaver 5.45 can be bypassed if the machine has more than ten disconnectable video outputs. A buffer overflow in update_screen_layout() allows an malicious user to bypass the standard screen lock authentication mechanism by crashing XScreenSaver. The attacker must physically...
Xscreensaver Project Xscreensaver 5.45
Fedoraproject Fedora 33
NA
CVE-2015-8025
driver/subprocs.c in XScreenSaver prior to 5.34 does not properly perform an internal consistency check, which allows physically proximate malicious users to bypass the lock screen by hot swapping monitors.
Canonical Ubuntu Linux 12.04
Xscreensaver Project Xscreensaver 5.33
7.8
CVSSv3
CVE-2011-2187
xscreensaver prior to 5.14 crashes during activation and leaves the screen unlocked when in Blank Only Mode and when DPMS is disabled, which allows local malicious users to access resources without authentication.
Xscreensaver Project Xscreensaver
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started