Vulnerability DatabaseCVE-2014-1949
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2014-1949
Published:January 16, 2015
Updated:May 17, 2026
GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.
Related Resources (8)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:162
https://github.com/linuxmint/cinnamon-screensaver/issues/44
https://bugzilla.redhat.com/show_bug.cgi?id=1064695
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
http://www.ubuntu.com/usn/USN-2475-1
http://advisories.mageia.org/MGASA-2014-0374.html
http://seclists.org/oss-sec/2014/q1/331
http://seclists.org/oss-sec/2014/q1/327
Do you need more information?
Contact Us
CVSS v3
Base Score:
8.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH
CVSS v2
Base Score:
7.2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
Weakness Type (CWE)
Improper Access Control
CWE-284
EPSS
Base Score:
0.04