kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locked.
References
Configurations
History
No history.
Information
Published : 2015-01-26 15:59
Updated : 2024-02-28 12:20
NVD link : CVE-2015-1308
Mitre link : CVE-2015-1308
CVE.ORG link : CVE-2015-1308
JSON object : View
Products Affected
kde
- kde-workspace
- plasma-workspace
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor