Ibus Project : Security Vulnerabilities, CVEs, CVSS score >= 6
A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user.
Max CVSS
7.1
EPSS Score
0.04%
Published
2019-11-25
Updated
2022-06-07
1 vulnerabilities found