← Back

Ibus

ibus

Vendor: Ibus Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-14822
4Canonical
Ibus ProjectOracle+1 more
4Enterprise Linux
IbusUbuntu Linux+1 more
Nov 21, 2024
Nov 25, 2019
N/A· v4
7.1 HIGH· v3
3.6 LOW· v2
A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attac...Show more
A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user.Show less
CVE-2013-4509
2Ibus Project
Opensuse
2Ibus
Opensuse
Apr 29, 2026
Nov 23, 2013
N/A· v4
N/A· v3
1.9 LOW· v2
The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allows physically proxima...Show more
The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allows physically proximate attackers to obtain a user password by reading the lockscreen.Show less