Lucene search

PRIOn knowledge basePRION:CVE-2014-1949

HistoryJan 16, 2015 - 4:59 p.m.

Design/Logic Flaw

2015-01-1616:59:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.

CPENameOperatorVersion
ubuntueq14.04
gtkle3.10.9
linux_minteq17.0

Name	Operator	Version
ubuntu	eq	14.04
gtk	le	3.10.9
linux_mint	eq	17.0

References

advisories.mageia.org/MGASA-2014-0374.html

seclists.org/oss-sec/2014/q1/327

seclists.org/oss-sec/2014/q1/331

www.mandriva.com/security/advisories?name=MDVSA-2015:162

www.ubuntu.com/usn/USN-2475-1

bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145

bugzilla.redhat.com/show_bug.cgi?id=1064695

github.com/linuxmint/cinnamon-screensaver/issues/44

6.9 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON

Related for PRION:CVE-2014-1949