Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Suckless Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-0842 2 Debian, Suckless 2 Debian Linux, Surf 2020-08-18 2.1 LOW 5.5 MEDIUM
surf: cookie jar has read access from other local user
CVE-2012-1620 1 Suckless 1 Slock 2017-08-28 3.6 LOW N/A
slock 0.9 does not properly handle the XRaiseWindow event when the screen is locked, which might allow physically proximate attackers to obtain sensitive information by pressing a button, which reveals the desktop and active windows.
CVE-2016-6866 2 Fedoraproject, Suckless 2 Fedora, Slock 2017-02-17 5.0 MEDIUM 7.5 HIGH
slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.