A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to kill existing applications and start new ones as the locked user, even if the session is still locked.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-02-18T00:00:00

Updated: 2024-08-03T17:37:23.718Z

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20315

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-02-18T18:15:08.800

Modified: 2024-11-21T05:46:21.660

Link: CVE-2021-20315

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-08-31T00:00:00Z

Links: CVE-2021-20315 - Bugzilla