CVE-2013-7220

2014-04-29T14:38:00
ID CVE-2013-7220
Type cve
Reporter cve@mitre.org
Modified 2014-04-29T18:53:00

Description

js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus on the Activities search. Per: https://cwe.mitre.org/data/definitions/77.html

"CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')"