CVE-2022-26530

Опубликовано: 03 апр. 2022

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2066596
Issue Tracking
Third Party Advisory
https://github.com/swaywm/swaylock/commit/1d1c75b6316d21933069a9d201f966d84099f6ca
Patch
Third Party Advisory
https://github.com/swaywm/swaylock/pull/219
Issue Tracking
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2066596
Issue Tracking
Third Party Advisory
https://github.com/swaywm/swaylock/commit/1d1c75b6316d21933069a9d201f966d84099f6ca
Patch
Third Party Advisory
https://github.com/swaywm/swaylock/pull/219
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:swaywm:swaylock:*:*:*:*:*:*:*:*

Версия до 1.6 (исключая)

EPSS

Процентиль: 67%

0.00553

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2022-26530

CVSS3: 9.1

ubuntu

почти 4 года назад

swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor.

CVE-2022-26530

CVSS3: 9.1

debian

почти 4 года назад

swaylock before 1.6 allows attackers to trigger a crash and achieve un ...

GHSA-642g-829p-22jc

CVSS3: 9.1

github

почти 4 года назад

swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor.

EPSS

Процентиль: 67%

0.00553

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo