waycrate 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
一般的な弱点パターンには パス処理の欠陥 and vendor risk denial of service があり、vendor surface production workloads and vendor surface software deployment の利用場面で ファイル上書き などのリスクが生じる可能性があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2022-27817 | SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality. | [email protected] | 4.4 | 0.44% | 2022-04-14 | 2026-06-17 |
| CVE-2022-27814 | SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option. | [email protected] | 3.3 | 0.45% | 2022-04-14 | 2026-06-17 |
| CVE-2022-27819 | SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service (memory exhaustion) upon an attempt to parse a large or infinite file (such as a block or character device). | [email protected] | 5.3 | 0.80% | 2022-04-06 | 2026-06-17 |
| CVE-2022-27818 | SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service. | [email protected] | 9.1 | 1.69% | 2022-04-06 | 2026-06-17 |
| CVE-2022-27816 | SWHKD 1.1.5 unsafely uses the /tmp/swhks.pid pathname. There can be data loss or a denial of service. | [email protected] | 7.1 | 0.49% | 2022-03-29 | 2026-06-17 |
| CVE-2022-27815 | SWHKD 1.1.5 unsafely uses the /tmp/swhkd.pid pathname. There can be an information leak or denial of service. | [email protected] | 7.8 | 0.51% | 2022-03-29 | 2026-06-17 |