Search Results (Refine Search)
- CPE Product Version: cpe:/a:gnome:gnome-shell:2.29.1
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2021-20315 |
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to kill existing applications and start new ones as the locked user, even if the session is still locked. Published: February 18, 2022; 1:15:08 PM -0500 |
V3.1: 6.1 MEDIUM V2.0: 3.6 LOW |
CVE-2020-17489 |
An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password shown in cleartext at login time, it is then visible for a brief moment upon a logout. (If the password were never shown in cleartext, only the password length is revealed.) Published: August 11, 2020; 5:15:10 PM -0400 |
V3.1: 4.3 MEDIUM V2.0: 1.9 LOW |
CVE-2013-7221 |
The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the "Enter a Command" dialog, which allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation. Published: April 29, 2014; 10:38:47 AM -0400 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2013-7220 |
js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus on the Activities search. Published: April 29, 2014; 10:38:46 AM -0400 |
V3.x:(not available) V2.0: 4.6 MEDIUM |