CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
26.7%
GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.
advisories.mageia.org/MGASA-2014-0374.html
seclists.org/oss-sec/2014/q1/327
seclists.org/oss-sec/2014/q1/331
www.mandriva.com/security/advisories?name=MDVSA-2015:162
www.ubuntu.com/usn/USN-2475-1
bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
bugzilla.redhat.com/show_bug.cgi?id=1064695
github.com/linuxmint/cinnamon-screensaver/issues/44