Lucene search
PRIOn knowledge basePRION:CVE-2018-19358HistoryNov 18, 2018 - 7:29 p.m.
Code injection
2018-11-1819:29:00
PRIOn knowledge base
www.prio-n.com
2
DISPUTED GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is that this occurs because available D-Bus protection mechanisms (involving the busconfig and policy XML elements) are not used. NOTE: the vendor disputes this because, according to the security model, untrusted applications must not be allowed to access the user’s session bus socket.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gnome-keyring | le | 3.28.2 |
Related
nvd
nvd
CVE-2018-19358
2018-11-18 19:29:00
CVE-2008-7320
2018-11-18 19:29:00
debiancve
debiancve
CVE-2018-19358
2018-11-18 19:29:00
CVE-2008-7320
2022-10-03 16:13:53
cvelist
cvelist
CVE-2018-19358
2018-11-18 00:00:00
CVE-2008-7320
2022-10-03 16:13:53
redhatcve
redhatcve
CVE-2018-19358
2018-11-21 17:53:45
cve
cve
CVE-2018-19358
2018-11-18 19:29:00
CVE-2008-7320
2022-10-03 16:13:53
rosalinux
rosalinux
Advisory ROSA-SA-2021-1845
2021-07-02 16:56:39
ubuntucve
ubuntucve
CVE-2018-19358
2018-11-18 00:00:00
CVE-2008-7320
2018-11-18 00:00:00
prion
prion
Design/Logic Flaw
2018-11-18 19:29:00