What is the severity of CVE-2015-8025?

CVE-2015-8025 is classified as a high severity vulnerability due to the potential for an unauthorized user to bypass the lock screen.

How do I fix CVE-2015-8025?

To fix CVE-2015-8025, upgrade XScreenSaver to version 5.34 or later, or apply available patches for affected distributions.

Who is affected by CVE-2015-8025?

CVE-2015-8025 affects users of XScreenSaver versions prior to 5.34 and Ubuntu Linux 12.04 utilizing XScreenSaver.

What types of attacks can exploit CVE-2015-8025?

CVE-2015-8025 can be exploited by physically proximate attackers who can manipulate monitor connections.

What is XScreenSaver's role in CVE-2015-8025?

XScreenSaver is the software component where the vulnerability exists, allowing attackers to bypass the lock screen under certain conditions.

Vulnerability/
CVE-2015-8025

low

2.1

CWE

264

10/11/2015

6/8/2024

CVE-2015-8025

First published: Tue Nov 10 2015(Updated: )

driver/subprocs.c in XScreenSaver before 5.34 does not properly perform an internal consistency check, which allows physically proximate attackers to bypass the lock screen by hot swapping monitors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Ubuntu Linux	=12.04
XScreenSaver	=5.33

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-8025?
CVE-2015-8025 is classified as a high severity vulnerability due to the potential for an unauthorized user to bypass the lock screen.
How do I fix CVE-2015-8025?
To fix CVE-2015-8025, upgrade XScreenSaver to version 5.34 or later, or apply available patches for affected distributions.
Who is affected by CVE-2015-8025?
CVE-2015-8025 affects users of XScreenSaver versions prior to 5.34 and Ubuntu Linux 12.04 utilizing XScreenSaver.
What types of attacks can exploit CVE-2015-8025?
CVE-2015-8025 can be exploited by physically proximate attackers who can manipulate monitor connections.
What is XScreenSaver's role in CVE-2015-8025?
XScreenSaver is the software component where the vulnerability exists, allowing attackers to bypass the lock screen under certain conditions.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/author
agent/severity
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/12.04
vendor/xscreensaver project
canonical/xscreensaver
version/xscreensaver/5.33

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2015-8025?
CVE-2015-8025 is classified as a high severity vulnerability due to the potential for an unauthorized user to bypass the lock screen.
How do I fix CVE-2015-8025?
To fix CVE-2015-8025, upgrade XScreenSaver to version 5.34 or later, or apply available patches for affected distributions.
Who is affected by CVE-2015-8025?
CVE-2015-8025 affects users of XScreenSaver versions prior to 5.34 and Ubuntu Linux 12.04 utilizing XScreenSaver.
What types of attacks can exploit CVE-2015-8025?
CVE-2015-8025 can be exploited by physically proximate attackers who can manipulate monitor connections.
What is XScreenSaver's role in CVE-2015-8025?
XScreenSaver is the software component where the vulnerability exists, allowing attackers to bypass the lock screen under certain conditions.