CVE-2018-20839

Name of the Vulnerable Software and Affected Versions: systemd version 242

Description: The issue allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.

Recommendations: For systemd version 242, consider updating to a newer version that handles the KDGKBMODE check correctly to prevent the exposure of cleartext passwords. As a temporary workaround, restrict access to the system during shutdown or when switching between terminals using Ctrl-Alt-F1 and Ctrl-Alt-F2 to minimize the risk of exploitation.