Arbitrary Command Execution via Unattended Workstation in GNOME Shell

Arbitrary Command Execution via Unattended Workstation in GNOME Shell

CVE-2013-7220 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus on the Activities search.

Learn more about our Physical Security Assessment.