CVE-2014-5195
published 2014-08-07CVE-2014-5195: Unity before 7.2.3 and 7.3.x before 7.3.1, as used in Ubuntu, does not properly take focus of the keyboard when switching to the lock screen, which allows…
high7.2CVSS 3.1
AVLACLAuNCCICAC
Unity before 7.2.3 and 7.3.x before 7.3.1, as used in Ubuntu, does not properly take focus of the keyboard when switching to the lock screen, which allows physically proximate attackers to bypass the lock screen by (1) leveraging a machine that had text selected when locking or (2) resuming from a suspension.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ayatana_project | unity | <= 7.2.2 | — |
| ayatana_project | unity | — | — |
| ayatana_project | unity | — | — |
| ayatana_project | unity | — | — |
| dell | unity | >= 0 < 7.2.2+14.04.20140714-0ubuntu1.1 | 7.2.2+14.04.20140714-0ubuntu1.1 |
CVSS provenance
nvd7.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH