M-Privacy: >> Rsbac-Policy-Tgpro Security Vulnerabilities
In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, broken Access Control on X11 server sockets allows authenticated attackers (with access to a VNC session) to access the X11 desktops of other users by specifying their DISPLAY ID. This allows complete control of their desktop, including the ability to inject keystrokes and perform a keylogging attack.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-22