CVE-2022-27818
CRITICALWaycrate Swhkd < 1.2.0 - Exposure to Wrong Actor
Title source: ruleDescription
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service.
Scores
CVSS v3
9.1
EPSS
0.0049
EPSS Percentile
65.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Classification
CWE
CWE-668
Status
published
Affected Products (2)
waycrate/swhkd
crates.io/Simple-Wayland-HotKey-Daemon
< 1.2.0crates.io
Timeline
Published
Apr 07, 2022
Tracked Since
Feb 18, 2026