logo

Database

Sensitive information sent insecurely In simple-wayland-hotkey-daemon

Description

Exposure of Resource to Wrong Sphere in Simple-Wayland-HotKey-Daemon SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-278172. NVD-2022-278173. OSV-2022-278174. GCVE-2022-27817

References

1. https://github.com/waycrate/swhkd/releases2. https://www.openwall.com/lists/oss-security/2022/04/14/1

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.