CVE-2013-7273 — Display Manager vulnerability

8 documents7 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 79.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnome Display Manager

Timeline

PublishedApr 29

Latest updateMay 17

Description

GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to true, allows local users to cause a denial of service (unable to login) by pressing the cancel button after entering a user name.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDgnome/gnome_display_manager3.4.1+15

🔴Vulnerability Details

GHSA

GHSA-2w7j-hchq-jpj6: GNOME Display Manager (gdm) 3↗2022-05-17

▶

OSV

CVE-2013-7273: GNOME Display Manager (gdm) 3↗2014-04-29

▶

CVEList

CVE-2013-7273: GNOME Display Manager (gdm) 3↗2014-04-29

▶

📋Vendor Advisories

Debian

CVE-2013-7273: gdm3 - GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to ...↗2013

▶

Red Hat

gdm: local DoS possible when cancelling and disable-user-list=true when fallback greeter is used↗2012-07-30

▶

💬Community

Bugzilla

CVE-2013-7273 gdm: local DoS possible when cancelling and disable-user-list=true when fallback greeter is used [fedora-all]↗2014-01-09

▶

Bugzilla

CVE-2013-7273 gdm: local DoS possible when cancelling and disable-user-list=true when fallback greeter is used↗2014-01-09

▶