CVE-2011-4105 [Low] | Security Vulnerability in Lightdm

CVE-2011-4105 is rated Low Risk (11.4/100): CVSS Low severity, with low exploitation likelihood (EPSS 0.05%). Low composite risk—no urgent action required; patch on your normal maintenance cycle and revisit priority if CVSS or EPSS increases.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-03-30	0.05%	0.05%	-0.01%
2	2025-03-29	0.04%	0.05%	+0.01%
3	2023-03-07	—	0.04%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-03-30

0.05%

-0.01%

2025-03-29

0.04%

0.05%

+0.01%

2023-03-07

—

0.04%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
1.9	2.0	LOW	`AV:L/AC:M/Au:N/C:N/I:P/A:N` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:N) No confidentiality impact. Integrity impact (I:P) Partial integrity impact. Availability impact (A:N) No availability impact.	3.4	2.9	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

1.9

2.0

LOW

AV:L/AC:M/Au:N/C:N/I:P/A:N Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:M): Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:N): No confidentiality impact.
Integrity impact (I:P): Partial integrity impact.
Availability impact (A:N): No availability impact.

3.4

2.9

[email protected]

OS Trackers for CVE-2011-4105

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2011-4105 not yet assigned priority: Debian including 1 source packages (lightdm), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2011-4105
`ubuntu`	medium	CVE-2011-4105 medium priority: Ubuntu including 1 source packages (lightdm), 8 status rows across 8 suites (hardy, lucid, maverick, natty, oneiric, precise, quantal, upstream): DNE 3, released 3, ignored 1, needs-triage 1.	https://ubuntu.com/security/CVE-2011-4105

Affected software / configurations for CVE-2011-4105

Vendor	Product	Version	Raw CPE
robert_ancell	lightdm	<= 1.0.5	cpe:2.3:a:robert_ancell:lightdm::::::::
robert_ancell	lightdm	0.0.1	cpe:2.3:a:robert_ancell:lightdm:0.0.1:::::::*
robert_ancell	lightdm	0.0.2	cpe:2.3:a:robert_ancell:lightdm:0.0.2:::::::*
robert_ancell	lightdm	0.0.3	cpe:2.3:a:robert_ancell:lightdm:0.0.3:::::::*
robert_ancell	lightdm	0.0.4	cpe:2.3:a:robert_ancell:lightdm:0.0.4:::::::*
robert_ancell	lightdm	0.1.0	cpe:2.3:a:robert_ancell:lightdm:0.1.0:::::::*
robert_ancell	lightdm	0.1.1	cpe:2.3:a:robert_ancell:lightdm:0.1.1:::::::*
robert_ancell	lightdm	0.1.2	cpe:2.3:a:robert_ancell:lightdm:0.1.2:::::::*
robert_ancell	lightdm	0.2.0	cpe:2.3:a:robert_ancell:lightdm:0.2.0:::::::*
robert_ancell	lightdm	0.2.1	cpe:2.3:a:robert_ancell:lightdm:0.2.1:::::::*
robert_ancell	lightdm	0.2.2	cpe:2.3:a:robert_ancell:lightdm:0.2.2:::::::*
robert_ancell	lightdm	0.2.3	cpe:2.3:a:robert_ancell:lightdm:0.2.3:::::::*
robert_ancell	lightdm	0.3.0	cpe:2.3:a:robert_ancell:lightdm:0.3.0:::::::*
robert_ancell	lightdm	0.3.1	cpe:2.3:a:robert_ancell:lightdm:0.3.1:::::::*
robert_ancell	lightdm	0.3.2	cpe:2.3:a:robert_ancell:lightdm:0.3.2:::::::*
robert_ancell	lightdm	0.3.3	cpe:2.3:a:robert_ancell:lightdm:0.3.3:::::::*
robert_ancell	lightdm	0.3.4	cpe:2.3:a:robert_ancell:lightdm:0.3.4:::::::*
robert_ancell	lightdm	0.3.5	cpe:2.3:a:robert_ancell:lightdm:0.3.5:::::::*
robert_ancell	lightdm	0.3.6	cpe:2.3:a:robert_ancell:lightdm:0.3.6:::::::*
robert_ancell	lightdm	0.4.0	cpe:2.3:a:robert_ancell:lightdm:0.4.0:::::::*
robert_ancell	lightdm	0.4.1	cpe:2.3:a:robert_ancell:lightdm:0.4.1:::::::*
robert_ancell	lightdm	0.4.2	cpe:2.3:a:robert_ancell:lightdm:0.4.2:::::::*
robert_ancell	lightdm	0.4.3	cpe:2.3:a:robert_ancell:lightdm:0.4.3:::::::*
robert_ancell	lightdm	0.4.4	cpe:2.3:a:robert_ancell:lightdm:0.4.4:::::::*
robert_ancell	lightdm	0.9.0	cpe:2.3:a:robert_ancell:lightdm:0.9.0:::::::*
robert_ancell	lightdm	0.9.1	cpe:2.3:a:robert_ancell:lightdm:0.9.1:::::::*
robert_ancell	lightdm	0.9.2	cpe:2.3:a:robert_ancell:lightdm:0.9.2:::::::*
robert_ancell	lightdm	0.9.3	cpe:2.3:a:robert_ancell:lightdm:0.9.3:::::::*
robert_ancell	lightdm	0.9.4	cpe:2.3:a:robert_ancell:lightdm:0.9.4:::::::*
robert_ancell	lightdm	0.9.5	cpe:2.3:a:robert_ancell:lightdm:0.9.5:::::::*
robert_ancell	lightdm	0.9.6	cpe:2.3:a:robert_ancell:lightdm:0.9.6:::::::*
robert_ancell	lightdm	0.9.7	cpe:2.3:a:robert_ancell:lightdm:0.9.7:::::::*
robert_ancell	lightdm	0.9.8	cpe:2.3:a:robert_ancell:lightdm:0.9.8:::::::*
robert_ancell	lightdm	1.0.0	cpe:2.3:a:robert_ancell:lightdm:1.0.0:::::::*
robert_ancell	lightdm	1.0.1	cpe:2.3:a:robert_ancell:lightdm:1.0.1:::::::*
robert_ancell	lightdm	1.0.2	cpe:2.3:a:robert_ancell:lightdm:1.0.2:::::::*
robert_ancell	lightdm	1.0.3	cpe:2.3:a:robert_ancell:lightdm:1.0.3:::::::*
robert_ancell	lightdm	1.0.4	cpe:2.3:a:robert_ancell:lightdm:1.0.4:::::::*
robert_ancell	lightdm	1.1.0	cpe:2.3:a:robert_ancell:lightdm:1.1.0:::::::*

References for CVE-2011-4105

URL	Tags
http://lists.freedesktop.org/archives/lightdm/2011-November/000178.html
http://www.openwall.com/lists/oss-security/2011/11/02/10
http://www.openwall.com/lists/oss-security/2011/11/02/6
http://www.openwall.com/lists/oss-security/2011/11/02/9
http://www.ubuntu.com/usn/USN-1262-1

URL

CVE-2011-4105

Exploit prediction scoring system (EPSS) score for CVE-2011-4105

Common vulnerability scoring system (CVSS) metrics for CVE-2011-4105

Weakness enumeration for CVE-2011-4105

OS Trackers for CVE-2011-4105

Affected software / configurations for CVE-2011-4105

References for CVE-2011-4105