Gnome Display Manager Security Vulnerabilities and Issues — Gnome Display Manager CVE List

Lucene search

GnomeGnome Display Manager

4 matches found

CVE•added 2019/02/06 8:29 p.m.•159 views

CVE-2019-3825

A vulnerability was discovered in gdm before 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by selecting the timed login user and waiting for the timer to expire, at which time they would gain access to the logged-in user's session.

6.9CVSS5.4AI score0.00075EPSS

CVE•added 2020/12/28 7:15 p.m.•83 views

CVE-2020-27837

A flaw was found in GDM in versions prior to 3.38.2.1. A race condition in the handling of session shutdown makes it possible to bypass the lock screen for a user that has autologin enabled, accessing their session without authentication. This is similar to CVE-2017-12164, but requires more difficu...

6.4CVSS6AI score0.00117EPSS

CVE•added 2018/07/26 4:29 p.m.•67 views

CVE-2017-12164

A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean during autologin. If autologin was enabled for a victim, an attacker could simply select 'login as another user' to unlock their screen.

6.9CVSS6AI score0.00117EPSS

CVE•added 2013/09/10 7:55 p.m.•58 views

CVE-2013-4169

GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary directories via a symlink attack on /tmp/.X11-unix/.

6.9CVSS6.1AI score0.00031EPSS