Every CVE whose affected-product data names Sddm Project Sddm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2014-7271 — CVSS 7.8 (high): Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to log in as user "sddm" without authentication.
CVE-2014-7272 — CVSS 7.8 (high): Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write…
CVE-2018-14345 — CVSS 7.5 (high): An issue was discovered in SDDM through 0.17.0. If configured with ReuseSession=true, the password is not checked for users with an already…
CVE-2020-28049 — CVSS 6.3 (medium): An issue was discovered in SDDM before 0.19.0. It incorrectly starts the X server in a way that - for a short time period - allows local…
CVE-2015-0856 — CVSS 4.6 (medium): daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by…