Description
pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which trigger a crash.
References (3)
Core 3
Core References
Mailing List mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2013/q4/109
Various Sources x_refsource_confirm
https://github.com/leonnnn/pyxtrlock/blob/master/CHANGELOG
Issue Tracking x_refsource_confirm
https://github.com/leonnnn/pyxtrlock/issues/8
Scores
EPSS
0.0007
EPSS Percentile
22.1%
Details
Status
published
Products (1)
leon_weber/pyxtrlock
< 0.1
Published
May 19, 2014
Tracked Since
Feb 18, 2026