Lucene search
MitreCVE-2013-7221HistoryApr 29, 2014 - 2:38 p.m.
CVE-2013-7221
2014-04-2914:38:47
CWE-264
mitre
web.nvd.nist.gov
19
cve-2013-7221
gnome shell
screen lock
arbitrary command execution
vulnerability
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.001
Percentile
25.1%
The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the “Enter a Command” dialog, which allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation.
Affected configurations
Node
gnomegnome-shellRange≤3.9.92
ORgnomegnome-shellMatch3.0.0
ORgnomegnome-shellMatch3.0.0.1
ORgnomegnome-shellMatch3.0.0.2
ORgnomegnome-shellMatch3.0.1
ORgnomegnome-shellMatch3.0.2
ORgnomegnome-shellMatch3.1.3
ORgnomegnome-shellMatch3.1.4
ORgnomegnome-shellMatch3.1.90
ORgnomegnome-shellMatch3.1.90.1
ORgnomegnome-shellMatch3.1.91
ORgnomegnome-shellMatch3.1.91.1
ORgnomegnome-shellMatch3.1.92
ORgnomegnome-shellMatch3.2.0
ORgnomegnome-shellMatch3.2.1
ORgnomegnome-shellMatch3.2.2
ORgnomegnome-shellMatch3.2.2.1
ORgnomegnome-shellMatch3.3.2
ORgnomegnome-shellMatch3.3.3
ORgnomegnome-shellMatch3.3.5
ORgnomegnome-shellMatch3.3.90
ORgnomegnome-shellMatch3.3.91
ORgnomegnome-shellMatch3.3.92
ORgnomegnome-shellMatch3.4.0
ORgnomegnome-shellMatch3.4.1
ORgnomegnome-shellMatch3.4.2
ORgnomegnome-shellMatch3.5.2
ORgnomegnome-shellMatch3.5.3
ORgnomegnome-shellMatch3.5.4
ORgnomegnome-shellMatch3.5.90
ORgnomegnome-shellMatch3.5.91
ORgnomegnome-shellMatch3.5.92
ORgnomegnome-shellMatch3.6.0
ORgnomegnome-shellMatch3.6.1
ORgnomegnome-shellMatch3.6.2
ORgnomegnome-shellMatch3.6.3
ORgnomegnome-shellMatch3.6.3.1
ORgnomegnome-shellMatch3.7.1
ORgnomegnome-shellMatch3.7.2
ORgnomegnome-shellMatch3.7.2.1
ORgnomegnome-shellMatch3.7.3
ORgnomegnome-shellMatch3.7.3.1
ORgnomegnome-shellMatch3.7.4
ORgnomegnome-shellMatch3.7.4.1
ORgnomegnome-shellMatch3.7.5
ORgnomegnome-shellMatch3.7.91
ORgnomegnome-shellMatch3.7.92
ORgnomegnome-shellMatch3.8.0
ORgnomegnome-shellMatch3.8.0.1
ORgnomegnome-shellMatch3.8.1
ORgnomegnome-shellMatch3.8.2
ORgnomegnome-shellMatch3.8.3
ORgnomegnome-shellMatch3.8.4
ORgnomegnome-shellMatch3.9.1
ORgnomegnome-shellMatch3.9.2
ORgnomegnome-shellMatch3.9.3
ORgnomegnome-shellMatch3.9.4
ORgnomegnome-shellMatch3.9.5
ORgnomegnome-shellMatch3.9.90
ORgnomegnome-shellMatch3.9.91
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnome | gnome-shell | * | cpe:2.3:a:gnome:gnome-shell:*:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.0.0 | cpe:2.3:a:gnome:gnome-shell:3.0.0:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.0.0.1 | cpe:2.3:a:gnome:gnome-shell:3.0.0.1:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.0.0.2 | cpe:2.3:a:gnome:gnome-shell:3.0.0.2:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.0.1 | cpe:2.3:a:gnome:gnome-shell:3.0.1:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.0.2 | cpe:2.3:a:gnome:gnome-shell:3.0.2:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.1.3 | cpe:2.3:a:gnome:gnome-shell:3.1.3:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.1.4 | cpe:2.3:a:gnome:gnome-shell:3.1.4:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.1.90 | cpe:2.3:a:gnome:gnome-shell:3.1.90:*:*:*:*:*:*:* |
| gnome | gnome-shell | 3.1.90.1 | cpe:2.3:a:gnome:gnome-shell:3.1.90.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2013-7221
2014-04-29 14:00:00
ubuntucve
ubuntucve
CVE-2013-7221
2014-04-29 00:00:00
prion
prion
Command injection
2014-04-29 14:38:00
debiancve
debiancve
CVE-2013-7221
2014-04-29 14:38:47
nvd
nvd
CVE-2013-7221
2014-04-29 14:38:47
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.001
Percentile
25.1%
Related for CVE-2013-7221