Lucene search

[email protected]CVE-2015-7496

HistoryNov 24, 2015 - 8:59 p.m.

CVE-2015-7496

2015-11-2420:59:06

CWE-264

[email protected]

web.nvd.nist.gov

cve-2015-7496

gnome display manager

gdm

lock screen bypass

security vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.9%

JSON

GNOME Display Manager (gdm) before 3.18.2 allows physically proximate attackers to bypass the lock screen by holding the Escape key.

Affected configurations

NVD

Node

fedoraprojectfedoraMatch23

Node

gnomegnome_display_managerRange≤3.18.0

CPENameOperatorVersion
fedoraproject:fedorafedoraproject fedoraeq23

CPE	Name	Operator	Version
fedoraproject:fedora	fedoraproject fedora	eq	23

References

lists.fedoraproject.org/pipermail/package-announce/2015-November/172328.html

www.openwall.com/lists/oss-security/2015/11/17/10

www.openwall.com/lists/oss-security/2015/11/17/8

access.redhat.com/errata/RHSA-2017:2128

bugzilla.gnome.org/show_bug.cgi?id=758032

download.gnome.org/sources/gdm/3.18/gdm-3.18.2.news

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.9%

JSON

Related for CVE-2015-7496

nessus8 ubuntucve1 centos1 mageia1 fedora1 cvelist1 nvd1 redhat1 oraclelinux1 openvas4 prion1 debiancve1 freebsd1