icon

We found results for “

CVE-2013-4509

Good to know:

icon

Date: November 23, 2013

The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allows physically proximate attackers to obtain a user password by reading the lockscreen.

Language: Python

Severity Score

Severity Score

Weakness Type (CWE)

Credentials Management

CWE-255

Top Fix

icon

Upgrade Version

Upgrade to version 1.5.4

Learn More

CVSS v2

Base Score:
Access Vector (AV): LOCAL
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): NONE
Availability (A): NONE
Additional information:

Do you need more information?

Contact Us