CVE-2011-1165 [Medium] | Security Vulnerability in Vino

CVE-2011-1165 is rated Exploit Available (58.8/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.65%). 1 public exploit reference(s) are indexed (Exploit-DB). Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-03-30	1.23%	0.65%	-0.57%
2	2025-03-29	0.71%	1.23%	+0.52%
3	2025-03-17	—	0.71%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-03-30

1.23%

0.65%

-0.57%

2025-03-29

0.71%

1.23%

+0.52%

2025-03-17

—

0.71%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.1	2.0	MEDIUM	`AV:N/AC:H/Au:N/C:P/I:P/A:P` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:H) Exploitation requires uncommon or highly specific conditions. Authentication (AU:N) No authentication is required. Confidentiality impact (C:P) Partial confidentiality impact. Integrity impact (I:P) Partial integrity impact. Availability impact (A:P) Partial availability impact.	4.9	6.4	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.1

2.0

MEDIUM

AV:N/AC:H/Au:N/C:P/I:P/A:P Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:H): Exploitation requires uncommon or highly specific conditions.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:P): Partial confidentiality impact.
Integrity impact (I:P): Partial integrity impact.
Availability impact (A:P): Partial availability impact.

4.9

6.4

[email protected]

OS Trackers for CVE-2011-1165

vendor	priority	summary	link
`debian`	unimportant	CVE-2011-1165 unimportant priority: Debian including 1 source packages (vino), 2 status rows across 2 suites (bookworm, bullseye): open 2.	https://security-tracker.debian.org/tracker/CVE-2011-1165
`redhat`	low	—	https://access.redhat.com/security/cve/CVE-2011-1165
`ubuntu`	low	CVE-2011-1165 low priority: Ubuntu including 1 source packages (vino), 9 status rows across 9 suites (hardy, lucid, maverick, natty, oneiric, precise, quantal, raring, upstream): ignored 4, not-affected 4, needs-triage 1.	https://ubuntu.com/security/CVE-2011-1165

Affected software / configurations for CVE-2011-1165

Vendor	Product	Version	Raw CPE
david_king	vino	<= 3.1.92	cpe:2.3:a:david_king:vino::::::::
david_king	vino	0.12	cpe:2.3:a:david_king:vino:0.12:::::::*
david_king	vino	0.14	cpe:2.3:a:david_king:vino:0.14:::::::*
david_king	vino	2.7	cpe:2.3:a:david_king:vino:2.7:::::::*
david_king	vino	2.7.3	cpe:2.3:a:david_king:vino:2.7.3:::::::*
david_king	vino	2.7.3.1	cpe:2.3:a:david_king:vino:2.7.3.1:::::::*
david_king	vino	2.7.4	cpe:2.3:a:david_king:vino:2.7.4:::::::*
david_king	vino	2.7.4.90	cpe:2.3:a:david_king:vino:2.7.4.90:::::::*
david_king	vino	2.7.4.91	cpe:2.3:a:david_king:vino:2.7.4.91:::::::*
david_king	vino	2.7.90	cpe:2.3:a:david_king:vino:2.7.90:::::::*
david_king	vino	2.7.91	cpe:2.3:a:david_king:vino:2.7.91:::::::*
david_king	vino	2.7.92	cpe:2.3:a:david_king:vino:2.7.92:::::::*
david_king	vino	2.8	cpe:2.3:a:david_king:vino:2.8:::::::*
david_king	vino	2.8.0	cpe:2.3:a:david_king:vino:2.8.0:::::::*
david_king	vino	2.8.0.1	cpe:2.3:a:david_king:vino:2.8.0.1:::::::*
david_king	vino	2.8.1	cpe:2.3:a:david_king:vino:2.8.1:::::::*
david_king	vino	2.9	cpe:2.3:a:david_king:vino:2.9:::::::*
david_king	vino	2.9.2	cpe:2.3:a:david_king:vino:2.9.2:::::::*
david_king	vino	2.10	cpe:2.3:a:david_king:vino:2.10:::::::*
david_king	vino	2.11	cpe:2.3:a:david_king:vino:2.11:::::::*
david_king	vino	2.11.1	cpe:2.3:a:david_king:vino:2.11.1:::::::*
david_king	vino	2.11.1.1	cpe:2.3:a:david_king:vino:2.11.1.1:::::::*
david_king	vino	2.11.1.2	cpe:2.3:a:david_king:vino:2.11.1.2:::::::*
david_king	vino	2.11.90	cpe:2.3:a:david_king:vino:2.11.90:::::::*
david_king	vino	2.11.92	cpe:2.3:a:david_king:vino:2.11.92:::::::*
david_king	vino	2.12	cpe:2.3:a:david_king:vino:2.12:::::::*
david_king	vino	2.13	cpe:2.3:a:david_king:vino:2.13:::::::*
david_king	vino	2.13.5	cpe:2.3:a:david_king:vino:2.13.5:::::::*
david_king	vino	2.14	cpe:2.3:a:david_king:vino:2.14:::::::*
david_king	vino	2.15	cpe:2.3:a:david_king:vino:2.15:::::::*
david_king	vino	2.16	cpe:2.3:a:david_king:vino:2.16:::::::*
david_king	vino	2.17	cpe:2.3:a:david_king:vino:2.17:::::::*
david_king	vino	2.17.2	cpe:2.3:a:david_king:vino:2.17.2:::::::*
david_king	vino	2.17.4	cpe:2.3:a:david_king:vino:2.17.4:::::::*
david_king	vino	2.17.5	cpe:2.3:a:david_king:vino:2.17.5:::::::*
david_king	vino	2.17.92	cpe:2.3:a:david_king:vino:2.17.92:::::::*
david_king	vino	2.18	cpe:2.3:a:david_king:vino:2.18:::::::*
david_king	vino	2.18.1	cpe:2.3:a:david_king:vino:2.18.1:::::::*
david_king	vino	2.19	cpe:2.3:a:david_king:vino:2.19:::::::*
david_king	vino	2.19.5	cpe:2.3:a:david_king:vino:2.19.5:::::::*
david_king	vino	2.19.90	cpe:2.3:a:david_king:vino:2.19.90:::::::*
david_king	vino	2.19.92	cpe:2.3:a:david_king:vino:2.19.92:::::::*
david_king	vino	2.20	cpe:2.3:a:david_king:vino:2.20:::::::*
david_king	vino	2.20.1	cpe:2.3:a:david_king:vino:2.20.1:::::::*
david_king	vino	2.21	cpe:2.3:a:david_king:vino:2.21:::::::*
david_king	vino	2.21.1	cpe:2.3:a:david_king:vino:2.21.1:::::::*
david_king	vino	2.21.2	cpe:2.3:a:david_king:vino:2.21.2:::::::*
david_king	vino	2.21.3	cpe:2.3:a:david_king:vino:2.21.3:::::::*
david_king	vino	2.21.90	cpe:2.3:a:david_king:vino:2.21.90:::::::*
david_king	vino	2.21.91	cpe:2.3:a:david_king:vino:2.21.91:::::::*
david_king	vino	2.21.92	cpe:2.3:a:david_king:vino:2.21.92:::::::*
david_king	vino	2.22	cpe:2.3:a:david_king:vino:2.22:::::::*
david_king	vino	2.22.1	cpe:2.3:a:david_king:vino:2.22.1:::::::*
david_king	vino	2.22.2	cpe:2.3:a:david_king:vino:2.22.2:::::::*
david_king	vino	2.23	cpe:2.3:a:david_king:vino:2.23:::::::*
david_king	vino	2.23.5	cpe:2.3:a:david_king:vino:2.23.5:::::::*
david_king	vino	2.23.90	cpe:2.3:a:david_king:vino:2.23.90:::::::*
david_king	vino	2.23.91	cpe:2.3:a:david_king:vino:2.23.91:::::::*
david_king	vino	2.23.92	cpe:2.3:a:david_king:vino:2.23.92:::::::*
david_king	vino	2.24	cpe:2.3:a:david_king:vino:2.24:::::::*
david_king	vino	2.24.1	cpe:2.3:a:david_king:vino:2.24.1:::::::*
david_king	vino	2.25	cpe:2.3:a:david_king:vino:2.25:::::::*
david_king	vino	2.25.3	cpe:2.3:a:david_king:vino:2.25.3:::::::*
david_king	vino	2.25.4	cpe:2.3:a:david_king:vino:2.25.4:::::::*
david_king	vino	2.25.5	cpe:2.3:a:david_king:vino:2.25.5:::::::*
david_king	vino	2.25.90	cpe:2.3:a:david_king:vino:2.25.90:::::::*
david_king	vino	2.25.91	cpe:2.3:a:david_king:vino:2.25.91:::::::*
david_king	vino	2.25.92	cpe:2.3:a:david_king:vino:2.25.92:::::::*
david_king	vino	2.26	cpe:2.3:a:david_king:vino:2.26:::::::*
david_king	vino	2.26.1	cpe:2.3:a:david_king:vino:2.26.1:::::::*
david_king	vino	2.26.2	cpe:2.3:a:david_king:vino:2.26.2:::::::*
david_king	vino	2.27	cpe:2.3:a:david_king:vino:2.27:::::::*
david_king	vino	2.27.5	cpe:2.3:a:david_king:vino:2.27.5:::::::*
david_king	vino	2.27.90	cpe:2.3:a:david_king:vino:2.27.90:::::::*
david_king	vino	2.27.91	cpe:2.3:a:david_king:vino:2.27.91:::::::*
david_king	vino	2.27.92	cpe:2.3:a:david_king:vino:2.27.92:::::::*
david_king	vino	2.28	cpe:2.3:a:david_king:vino:2.28:::::::*
david_king	vino	2.28.1	cpe:2.3:a:david_king:vino:2.28.1:::::::*
david_king	vino	2.28.2	cpe:2.3:a:david_king:vino:2.28.2:::::::*
david_king	vino	2.28.3	cpe:2.3:a:david_king:vino:2.28.3:::::::*

References for CVE-2011-1165

URL	Tags
http://git.gnome.org/browse/vino/commit/?id=410bbf8e284409bdef02322af4d4a3a388419566	Exploit Patch
http://rhn.redhat.com/errata/RHSA-2013-0169.html
http://www.dslreports.com/forum/r25446313-Ubuntu-computer-hijacked-by-hacker~start=40
https://bugzilla.gnome.org/show_bug.cgi?id=594521
https://bugzilla.redhat.com/show_bug.cgi?id=678846

URL

CVE-2011-1165

Public exploit references (Exploit-DB) for CVE-2011-1165

Exploit prediction scoring system (EPSS) score for CVE-2011-1165

Common vulnerability scoring system (CVSS) metrics for CVE-2011-1165

Weakness enumeration for CVE-2011-1165

OS Trackers for CVE-2011-1165

Affected software / configurations for CVE-2011-1165

References for CVE-2011-1165