Back to search
CVE-2019-14822
Published: Nov 25, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user.
| Vendor | Product | Versions |
|---|---|---|
n/a | ibus | affected ibus versions before 1.5.22 |
Weaknesses (CWE)
References
https://bugzilla.redhat.com/show_bug.cgi?id=1717958
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14822
x_refsource_MISC
https://usn.ubuntu.com/4134-3/
x_refsource_MISC
https://www.oracle.com/security-alerts/cpuapr2022.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now