cbcvebase.
CVE-2011-0727
published 2011-03-31

CVE-2011-0727: GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon…

PriorityP419medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.38%
29.5th percentile
GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon file under /var/cache/gdm/.

Affected

28 ranges· showing 25
VendorProductVersion rangeFixed in
debiangdm3< gdm3 2.30.5-9 (bookworm)gdm3 2.30.5-9 (bookworm)
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm
gnomegdm

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9MEDIUM
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.