CVE-2013-4426 : pyxtrlock before 0.1 uses an incorrect variable name, which allows physically pr

pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which trigger a crash.

Published 2014-05-19 14:55:07

Updated 2025-04-12 10:46:41

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2013-4426

Leon Weber » Pyxtrlock » Update Beta
Versions up to, including, (<=) 0.1
cpe:2.3:a:leon_weber:pyxtrlock:*:beta:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2013-4426

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 19 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-4426

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.6	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:P	3.9	4.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: Partial

References for CVE-2013-4426

http://seclists.org/oss-sec/2013/q4/109

oss-sec: Re: Re: CVE request: pyxtrlock
https://github.com/leonnnn/pyxtrlock/issues/8

Line 226 : MAXGODWILL instead of MAXGOODWILL in pyxtrlock · Issue #8 · leonnnn/pyxtrlock · GitHub
https://github.com/leonnnn/pyxtrlock/blob/master/CHANGELOG

pyxtrlock/CHANGELOG at master · leonnnn/pyxtrlock · GitHub

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2013-4426

Products affected by CVE-2013-4426

Exploit prediction scoring system (EPSS) score for CVE-2013-4426

CVSS scores for CVE-2013-4426

References for CVE-2013-4426