Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-3164

Опубликовано: 01 июл. 2015
Источник: nvd
CVSS2: 3.6
EPSS Низкий

Описание

The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:x.org:x_server:1.16.0:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.16.1:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.16.1.901:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.16.2:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.16.2.901:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.16.3:*:*:*:*:*:*:*
cpe:2.3:a:x.org:x_server:1.17.0:*:*:*:*:*:*:*
cpe:2.3:a:x.org:xorg-server:1.16.4:*:*:*:*:*:*:*
cpe:2.3:a:x.org:xorg-server:1.16.99.901:*:*:*:*:*:*:*
cpe:2.3:a:x.org:xorg-server:1.16.99.902:*:*:*:*:*:*:*
cpe:2.3:a:x.org:xorg-server:1.17.1:*:*:*:*:*:*:*

EPSS

Процентиль: 20%
0.00065
Низкий

3.6 Low

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2015-3164

ubuntu
больше 10 лет назад

The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

redhat логотип

CVE-2015-3164

redhat
больше 10 лет назад

The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

debian логотип

CVE-2015-3164

debian
больше 10 лет назад

The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 s ...

github логотип

GHSA-fww3-c3xq-2xqg

github
больше 3 лет назад

The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

EPSS

Процентиль: 20%
0.00065
Низкий

3.6 Low

CVSS2

Дефекты

CWE-264