Sddm Security Vulnerabilities and Issues — Sddm CVE List

Lucene search

Sddm ProjectSddm

3 matches found

CVE•added 2018/03/08 8:29 p.m.•45 views

CVE-2014-7271

Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to log in as user "sddm" without authentication.

7.8CVSS7.2AI score0.00087EPSS

CVE•added 2018/03/08 8:29 p.m.•43 views

CVE-2014-7272

Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race condition in the ~/.Xauth...

7.8CVSS7.5AI score0.00149EPSS

CVE•added 2018/07/17 2:29 p.m.•40 views

CVE-2018-14345

An issue was discovered in SDDM through 0.17.0. If configured with ReuseSession=true, the password is not checked for users with an already existing session. Any user with access to the system D-Bus can therefore unlock any graphical session. This is related to daemon/Display.cpp and helper/backend...

7.5CVSS7.4AI score0.00237EPSS