Описание
Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by pressing the SUPER key before the screen auto-locks.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [7.2.0+14.04.20140423-0ubuntu1]] |
| lucid | DNE | |
| precise | not-affected | |
| quantal | not-affected | |
| saucy | not-affected | |
| trusty | released | 7.2.0+14.04.20140423-0ubuntu1 |
| trusty/esm | DNE | trusty was released [7.2.0+14.04.20140423-0ubuntu1] |
| upstream | needs-triage |
Показывать по
EPSS
4.4 Medium
CVSS2
Связанные уязвимости
Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by pressing the SUPER key before the screen auto-locks.
Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by pressing the SUPER key before the screen auto-locks.
EPSS
4.4 Medium
CVSS2