A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
History

Fri, 29 Aug 2025 13:45:00 +0000

Type Values Removed Values Added
First Time appeared X.org x Server
CPEs cpe:2.3:a:x.org:xorg-server:*:*:*:*:*:*:*:* cpe:2.3:a:x.org:x_server:*:*:*:*:*:*:*:*
Vendors & Products X.org xorg-server
X.org x Server

Mon, 14 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.08208}

epss

{'score': 0.06474}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-05T09:38:13.000Z

Reserved: 2018-07-27T00:00:00

Link: CVE-2018-14665

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-10-25T20:29:00.250

Modified: 2025-08-29T13:42:30.557

Link: CVE-2018-14665

cve-icon Redhat

Severity : Important

Publid Date: 2018-10-25T14:00:00Z

Links: CVE-2018-14665 - Bugzilla

cve-icon OpenCVE Enrichment

No data.