CVE-2013-7221 [Medium] | Security Vulnerability in Gnome-Shell

The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the "Enter a Command" dialog, which allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2023-03-07	0.95%	0.06%	-0.89%
2	2022-02-04	—	0.95%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2023-03-07

0.95%

0.06%

-0.89%

2022-02-04

—

0.95%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
4.6	2.0	MEDIUM	`AV:L/AC:L/Au:N/C:P/I:P/A:P` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:P) Partial confidentiality impact. Integrity impact (I:P) Partial integrity impact. Availability impact (A:P) Partial availability impact.	3.9	6.4	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

4.6

2.0

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:P): Partial confidentiality impact.
Integrity impact (I:P): Partial integrity impact.
Availability impact (A:P): Partial availability impact.

3.9

6.4

[email protected]

OS Trackers for CVE-2013-7221

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2013-7221 not yet assigned priority: Debian including 1 source packages (gnome-shell), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2013-7221
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2013-7221
`ubuntu`	medium	CVE-2013-7221 medium priority: Ubuntu including 1 source packages (gnome-shell), 13 status rows across 13 suites (lucid, precise, quantal, raring, saucy, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): ignored 8, not-affected 3, DNE 1, released 1.	https://ubuntu.com/security/CVE-2013-7221

Affected software / configurations for CVE-2013-7221

Vendor	Product	Version	Raw CPE
gnome	gnome-shell	<= 3.9.92	cpe:2.3:a:gnome:gnome-shell::::::::
gnome	gnome-shell	3.0.0	cpe:2.3:a:gnome:gnome-shell:3.0.0:::::::*
gnome	gnome-shell	3.0.0.1	cpe:2.3:a:gnome:gnome-shell:3.0.0.1:::::::*
gnome	gnome-shell	3.0.0.2	cpe:2.3:a:gnome:gnome-shell:3.0.0.2:::::::*
gnome	gnome-shell	3.0.1	cpe:2.3:a:gnome:gnome-shell:3.0.1:::::::*
gnome	gnome-shell	3.0.2	cpe:2.3:a:gnome:gnome-shell:3.0.2:::::::*
gnome	gnome-shell	3.1.3	cpe:2.3:a:gnome:gnome-shell:3.1.3:::::::*
gnome	gnome-shell	3.1.4	cpe:2.3:a:gnome:gnome-shell:3.1.4:::::::*
gnome	gnome-shell	3.1.90	cpe:2.3:a:gnome:gnome-shell:3.1.90:::::::*
gnome	gnome-shell	3.1.90.1	cpe:2.3:a:gnome:gnome-shell:3.1.90.1:::::::*
gnome	gnome-shell	3.1.91	cpe:2.3:a:gnome:gnome-shell:3.1.91:::::::*
gnome	gnome-shell	3.1.91.1	cpe:2.3:a:gnome:gnome-shell:3.1.91.1:::::::*
gnome	gnome-shell	3.1.92	cpe:2.3:a:gnome:gnome-shell:3.1.92:::::::*
gnome	gnome-shell	3.2.0	cpe:2.3:a:gnome:gnome-shell:3.2.0:::::::*
gnome	gnome-shell	3.2.1	cpe:2.3:a:gnome:gnome-shell:3.2.1:::::::*
gnome	gnome-shell	3.2.2	cpe:2.3:a:gnome:gnome-shell:3.2.2:::::::*
gnome	gnome-shell	3.2.2.1	cpe:2.3:a:gnome:gnome-shell:3.2.2.1:::::::*
gnome	gnome-shell	3.3.2	cpe:2.3:a:gnome:gnome-shell:3.3.2:::::::*
gnome	gnome-shell	3.3.3	cpe:2.3:a:gnome:gnome-shell:3.3.3:::::::*
gnome	gnome-shell	3.3.5	cpe:2.3:a:gnome:gnome-shell:3.3.5:::::::*
gnome	gnome-shell	3.3.90	cpe:2.3:a:gnome:gnome-shell:3.3.90:::::::*
gnome	gnome-shell	3.3.91	cpe:2.3:a:gnome:gnome-shell:3.3.91:::::::*
gnome	gnome-shell	3.3.92	cpe:2.3:a:gnome:gnome-shell:3.3.92:::::::*
gnome	gnome-shell	3.4.0	cpe:2.3:a:gnome:gnome-shell:3.4.0:::::::*
gnome	gnome-shell	3.4.1	cpe:2.3:a:gnome:gnome-shell:3.4.1:::::::*
gnome	gnome-shell	3.4.2	cpe:2.3:a:gnome:gnome-shell:3.4.2:::::::*
gnome	gnome-shell	3.5.2	cpe:2.3:a:gnome:gnome-shell:3.5.2:::::::*
gnome	gnome-shell	3.5.3	cpe:2.3:a:gnome:gnome-shell:3.5.3:::::::*
gnome	gnome-shell	3.5.4	cpe:2.3:a:gnome:gnome-shell:3.5.4:::::::*
gnome	gnome-shell	3.5.90	cpe:2.3:a:gnome:gnome-shell:3.5.90:::::::*
gnome	gnome-shell	3.5.91	cpe:2.3:a:gnome:gnome-shell:3.5.91:::::::*
gnome	gnome-shell	3.5.92	cpe:2.3:a:gnome:gnome-shell:3.5.92:::::::*
gnome	gnome-shell	3.6.0	cpe:2.3:a:gnome:gnome-shell:3.6.0:::::::*
gnome	gnome-shell	3.6.1	cpe:2.3:a:gnome:gnome-shell:3.6.1:::::::*
gnome	gnome-shell	3.6.2	cpe:2.3:a:gnome:gnome-shell:3.6.2:::::::*
gnome	gnome-shell	3.6.3	cpe:2.3:a:gnome:gnome-shell:3.6.3:::::::*
gnome	gnome-shell	3.6.3.1	cpe:2.3:a:gnome:gnome-shell:3.6.3.1:::::::*
gnome	gnome-shell	3.7.1	cpe:2.3:a:gnome:gnome-shell:3.7.1:::::::*
gnome	gnome-shell	3.7.2	cpe:2.3:a:gnome:gnome-shell:3.7.2:::::::*
gnome	gnome-shell	3.7.2.1	cpe:2.3:a:gnome:gnome-shell:3.7.2.1:::::::*
gnome	gnome-shell	3.7.3	cpe:2.3:a:gnome:gnome-shell:3.7.3:::::::*
gnome	gnome-shell	3.7.3.1	cpe:2.3:a:gnome:gnome-shell:3.7.3.1:::::::*
gnome	gnome-shell	3.7.4	cpe:2.3:a:gnome:gnome-shell:3.7.4:::::::*
gnome	gnome-shell	3.7.4.1	cpe:2.3:a:gnome:gnome-shell:3.7.4.1:::::::*
gnome	gnome-shell	3.7.5	cpe:2.3:a:gnome:gnome-shell:3.7.5:::::::*
gnome	gnome-shell	3.7.91	cpe:2.3:a:gnome:gnome-shell:3.7.91:::::::*
gnome	gnome-shell	3.7.92	cpe:2.3:a:gnome:gnome-shell:3.7.92:::::::*
gnome	gnome-shell	3.8.0	cpe:2.3:a:gnome:gnome-shell:3.8.0:::::::*
gnome	gnome-shell	3.8.0.1	cpe:2.3:a:gnome:gnome-shell:3.8.0.1:::::::*
gnome	gnome-shell	3.8.1	cpe:2.3:a:gnome:gnome-shell:3.8.1:::::::*
gnome	gnome-shell	3.8.2	cpe:2.3:a:gnome:gnome-shell:3.8.2:::::::*
gnome	gnome-shell	3.8.3	cpe:2.3:a:gnome:gnome-shell:3.8.3:::::::*
gnome	gnome-shell	3.8.4	cpe:2.3:a:gnome:gnome-shell:3.8.4:::::::*
gnome	gnome-shell	3.9.1	cpe:2.3:a:gnome:gnome-shell:3.9.1:::::::*
gnome	gnome-shell	3.9.2	cpe:2.3:a:gnome:gnome-shell:3.9.2:::::::*
gnome	gnome-shell	3.9.3	cpe:2.3:a:gnome:gnome-shell:3.9.3:::::::*
gnome	gnome-shell	3.9.4	cpe:2.3:a:gnome:gnome-shell:3.9.4:::::::*
gnome	gnome-shell	3.9.5	cpe:2.3:a:gnome:gnome-shell:3.9.5:::::::*
gnome	gnome-shell	3.9.90	cpe:2.3:a:gnome:gnome-shell:3.9.90:::::::*
gnome	gnome-shell	3.9.91	cpe:2.3:a:gnome:gnome-shell:3.9.91:::::::*

References for CVE-2013-7221

URL	Tags
http://www.openwall.com/lists/oss-security/2013/12/27/4
http://www.openwall.com/lists/oss-security/2013/12/27/8
https://bugzilla.gnome.org/show_bug.cgi?id=708313
https://git.gnome.org/browse/gnome-shell/commit/js/ui/main.js?id=efdf1ff755943fba1f8a9aaeff77daa3ed338088

URL

CVE-2013-7221

Exploit prediction scoring system (EPSS) score for CVE-2013-7221

Common vulnerability scoring system (CVSS) metrics for CVE-2013-7221

Weakness enumeration for CVE-2013-7221

OS Trackers for CVE-2013-7221

Affected software / configurations for CVE-2013-7221

References for CVE-2013-7221