CVE-2009-4996

EPSS 0.16%
Published 07.09.2010 18:00:01
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Xfce4-session 4.5.91 in Xfce does not lock the screen when the suspend or hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action, a related issue to CVE-2010-2532.  NOTE: there is no general agreement that this is a vulnerability, because separate control over locking can be an equally secure, or more secure, behavior in some threat environments

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Xfce ≫ Xfce Version4.6 Updatebeta1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.16%	0.368

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

https://bugzilla.redhat.com/show_bug.cgi?id=614608

http://bugzilla.xfce.org/show_bug.cgi?id=4805

https://bugzilla.redhat.com/show_bug.cgi?id=525395

https://bugzilla.redhat.com/show_bug.cgi?id=587633

https://nvd.nist.gov/vuln/detail/CVE-2009-4996

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-4996

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-4996

EUVD