CVE-2015-3164
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2015-3164
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2015-3164.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2015-3164
- Downstream
- Related
- Published
- 2015-07-01T14:59:07Z
- Modified
- 2025-08-29T13:42:30Z
- Summary
- [none]
- Details
-
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.
- References