Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2023-43090

Published: Sep 22, 2023 | Modified: Sep 26, 2023
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
5.5 MODERATE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Ubuntu
MEDIUM
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2023-43090
CWEhttps://cwe.mitre.org/data/definitions/.html

A vulnerability was found in GNOME Shell. GNOME Shells lock screen allows an unauthenticated local user to view windows of the locked desktop session by using keyboard shortcuts to unlock the restricted functionality of the screenshot tool.

Affected Software

Name Vendor Start Version End Version
Gnome-shell Gnome 43 (including) 43.9 (excluding)
Gnome-shell Gnome 44 (including) 44.5 (excluding)
Gnome-shell Gnome 42 (including) 42 (including)
Gnome-shell Ubuntu bionic *
Gnome-shell Ubuntu devel *
Gnome-shell Ubuntu lunar *
Gnome-shell Ubuntu mantic *
Gnome-shell Ubuntu trusty *
Gnome-shell Ubuntu upstream *
Gnome-shell Ubuntu xenial *

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use