CyberSec.Space Logo
Back to CVE Browser

CVE-2014-1949

HIGH
7.2
CVSS Severity Score
EPSS Score0.0150%
EPSS Percentile38.03th
PublishedJan 16, 2015
Last ModifiedMay 6, 2026

Vulnerability Description

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.

Affected Platforms (CPE)

πŸ’»
Linuxmint

Linux Mint

= 17.0
πŸ“¦
Gnome

Gtk

<= 3.10.9
πŸ’»
Canonical

Ubuntu

= 14.04

References & Advisories

πŸ”— http://advisories.mageia.org/MGASA-2014-0374.html
πŸ”— http://seclists.org/oss-sec/2014/q1/327
πŸ”— http://seclists.org/oss-sec/2014/q1/331
πŸ”— http://www.mandriva.com/security/advisories?name=MDVSA-2015:162
πŸ”— http://www.ubuntu.com/usn/USN-2475-1
πŸ”— https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=1064695
πŸ”— https://github.com/linuxmint/cinnamon-screensaver/issues/44

Related Vulnerabilities

CVE-2019-170807.8

mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker...

CVE-2019-186347.8

In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged...

CVE-2019-203267.8

A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME...

CVE-2020-370417.5

OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can read arbi...