CVE-2018-20839
MEDIUMsystemd 242 - Unprotected Password Exposure via VT1 Mode Mishandling
Title source: llmDescription
systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.
References (6)
Core 6
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1803993
Patch x_refsource_misc
https://github.com/systemd/systemd/commit/9725f1a10f80f5e0ae7d9b60547458622aeb322f
Issue Tracking, Patch x_refsource_misc
https://github.com/systemd/systemd/pull/12378
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/108389
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20190530-0002/
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
Scores
CVSS v3
4.3
EPSS
0.0063
EPSS Percentile
70.5%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Details
Status
published
Products (4)
netapp/cn1610_firmware
netapp/snapprotect
netapp/solidfire_\&_hci_management_node
systemd_project/systemd
242
Published
May 17, 2019
Tracked Since
Feb 18, 2026