CVE-2018-20681

mate-screensaver before 1.20.2 in MATE Desktop Environment allows physically proximate attackers to view screen content and possibly control applications. By unplugging and re-plugging or power-cycling external output devices (such as additionally attached graphical outputs via HDMI, VGA, DVI, etc.) the content of a screensaver-locked session can be revealed. In some scenarios, the attacker can execute applications, such as by clicking with a mouse.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mate-desktop:mate-screensaver:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:01

Type Values Removed Values Added
References () https://github.com/mate-desktop/mate-screensaver/issues/152 - Exploit, Patch, Third Party Advisory () https://github.com/mate-desktop/mate-screensaver/issues/152 - Exploit, Patch, Third Party Advisory
References () https://github.com/mate-desktop/mate-screensaver/issues/155 - Exploit, Third Party Advisory () https://github.com/mate-desktop/mate-screensaver/issues/155 - Exploit, Third Party Advisory
References () https://github.com/mate-desktop/mate-screensaver/issues/170 - Third Party Advisory () https://github.com/mate-desktop/mate-screensaver/issues/170 - Third Party Advisory
References () https://github.com/mate-desktop/mate-screensaver/pull/167 - Patch, Third Party Advisory () https://github.com/mate-desktop/mate-screensaver/pull/167 - Patch, Third Party Advisory

Information

Published : 2019-01-09 23:29

Updated : 2024-11-21 04:01


NVD link : CVE-2018-20681

Mitre link : CVE-2018-20681

CVE.ORG link : CVE-2018-20681


JSON object : View

Products Affected

mate-desktop

  • mate-screensaver
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor