Unattended Workstation Command Execution Vulnerability in GNOME Shell

Unattended Workstation Command Execution Vulnerability in GNOME Shell

CVE-2013-7221 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the "Enter a Command" dialog, which allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation.

Learn more about our Physical Security Assessment.