CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2187

xscreensaver before 5.14 crashes during activation and leaves the screen unlocked when in Blank Only Mode and when DPMS is disabled, which allows local attackers to access resources without authentication.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.8%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

https://access.redhat.com/security/cve/cve-2011-2187
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627382
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2187
https://security-tracker.debian.org/tracker/CVE-2011-2187
https://www.jwz.org/xscreensaver/changelog.html
https://www.openwall.com/lists/oss-security/2011/06/06/17
https://access.redhat.com/security/cve/cve-2011-2187
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627382
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2187
https://security-tracker.debian.org/tracker/CVE-2011-2187
https://www.jwz.org/xscreensaver/changelog.html
https://www.openwall.com/lists/oss-security/2011/06/06/17

Products affected by CVE-2011-2187

Xscreensaver Project » Xscreensaver » Version: Any

cpe:2.3:a:xscreensaver_project:xscreensaver:*
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2187

Products

Pricing

Contact Us