EPSS
Percentile
57.0%
ask_password is vulnerable to authentication bypass. The tomb can be unlocked using any password when using pinentry-curses and non-empty $DISPLAY.
github.com/dyne/Tomb/issues/385
security-tracker.debian.org/tracker/CVE-2020-28638