Vulnerability Details CVE-2018-20681
mate-screensaver before 1.20.2 in MATE Desktop Environment allows physically proximate attackers to view screen content and possibly control applications. By unplugging and re-plugging or power-cycling external output devices (such as additionally attached graphical outputs via HDMI, VGA, DVI, etc.) the content of a screensaver-locked session can be revealed. In some scenarios, the attacker can execute applications, such as by clicking with a mouse.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.8%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 3.6
References
- https://github.com/mate-desktop/mate-screensaver/issues/152
- https://github.com/mate-desktop/mate-screensaver/issues/155
- https://github.com/mate-desktop/mate-screensaver/issues/170
- https://github.com/mate-desktop/mate-screensaver/pull/167
- https://github.com/mate-desktop/mate-screensaver/issues/152
- https://github.com/mate-desktop/mate-screensaver/issues/155
- https://github.com/mate-desktop/mate-screensaver/issues/170
- https://github.com/mate-desktop/mate-screensaver/pull/167
Products affected by CVE-2018-20681
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.1.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.10.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.10.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.10.2
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.11.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.11.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.12.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.13.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.14.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.14.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.15.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.16.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.16.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.17.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.17.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.18.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.18.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.18.2
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.18.3
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.19.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.19.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.2.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.20.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.20.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.4.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.5.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.5.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.5.2
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.6.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.6.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.6.2
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.7.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.7.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.7.90
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.8.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.8.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.9.0
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.9.1
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.9.2
-
cpe:2.3:a:mate-desktop:mate-screensaver:1.9.90