Description
The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters."
CVSS Metrics
- Vector
- AV:L/AC:H/Au:N/C:C/I:C/A:P
- Access Vector
- local
- Access Cmplx
- high
- Auth
- none
- Confidentiality
- complete
- Integrity
- complete
- Availability
- partial
- Weaknesses
- CWE-276
Metadata
- Primary Vendor
- SYSTEMD_PROJECT
- Published
- 10/28/2013
- Last Modified
- 4/11/2025
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
systemd_project : systemddebian : debian_linux
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.