Vulnerabilities > Suckless

DATE CVE VULNERABILITY TITLE RISK
2019-11-19 CVE-2012-0842 Information Exposure vulnerability in multiple products
surf: cookie jar has read access from other local user
local
low complexity
suckless debian CWE-200
5.5
2017-02-15 CVE-2016-6866 NULL Pointer Dereference vulnerability in multiple products
slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.
network
low complexity
suckless fedoraproject CWE-476
7.5