vulnerability

Debian: CVE-2011-2187: xscreensaver -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Nov 27, 2019	Jul 30, 2024	Mar 30, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Nov 27, 2019

Added

Jul 30, 2024

Modified

Mar 30, 2026

Description

xscreensaver before 5.14 crashes during activation and leaves the screen unlocked when in Blank Only Mode and when DPMS is disabled, which allows local attackers to access resources without authentication.

Solution

debian-upgrade-xscreensaver

References

CVE-2011-2187
https://attackerkb.com/topics/CVE-2011-2187
CWE-306
EUVD-EUVD-2011-2178
https://euvd.enisa.europa.eu/vulnerability/EUVD-2011-2178

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report