Lucene search
K
Lightdm ProjectLightdm

4 matches found

CVE
CVE
added 2017/04/05 6:23 a.m.86 views

CVE-2017-7358

LightDM before 1.22.0 is affected by a directory traversal flaw in debian/guest-account.sh that allows a local attacker to resolve arbitrary directory paths and escalate to root when the guest user logs out. The flaw is documented across multiple sources (e.g., CNVD-2017-05229, OSV, NVD) and is a...

7.3CVSS7AI score0.02669EPSS
CVE
CVE
added 2019/11/19 9:42 p.m.77 views

CVE-2011-3349

LightDM before 0.9.6 writes in .dmrc and Xauthority files with root permissions while the files are in user-controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation. Exploitation status is not provided in the linked documents; no...

7.8CVSS7.5AI score0.00363EPSS
CVE
CVE
added 2017/05/12 6:54 a.m.72 views

CVE-2017-8900

CVE-2017-8900 affects LightDM up to version 1.22.0 when used with systemd on Ubuntu 16.10 and 17.x. A physically proximate attacker can establish a guest session and bypass AppArmor restrictions to access arbitrary users’ home directories, exposing confidential data. The issue is documented in mu...

4.6CVSS4.6AI score0.00418EPSS
CVE
CVE
added 2017/09/06 9:0 p.m.58 views

CVE-2015-8316

CVE-2015-8316 affects LightDM. The vuln is an array index error in LightDM when the XDMCP server is enabled, allowing a remote attacker to cause a denial of service (process crash). Impact is described for affected versions: LightDM 1.14.3 and 1.16.x before 1.16.6 . The entry notes the attack is ...

5.9CVSS5.6AI score0.01748EPSS