Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allows physically proximate attackers to obtain a user password by reading the lockscreen.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBus 本地密码信息泄露漏洞
Vulnerability Description
IBUS(Intelligent Input Bus)是一套下一代输入法框架(平台),它包含了世界多数语言的文字输入需求。 IBUS 1.5.4和1.5.2及之前版本的默认配置中存在安全漏洞,该漏洞源于当程序使用GNOME 3并未设置使用IBus.InputPurpose.PASSWORD时,没有遮挡输入的密码。物理位置临近的攻击者可通过查看锁定屏幕利用该漏洞获取用户密码。
CVSS Information
N/A
Vulnerability Type
N/A