Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shell vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4000
gnome-shell in GNOME Shell 2.31.5 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Gnome Gnome-shell 2.31.5
NA
CVE-2001-0553
SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field.
Ssh Secure Shell 3.0.0
1 EDB exploit
6.5
CVSSv3
CVE-2013-4582
The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/gitlab_projects.rb in GitLab 5.0 prior to 5.4.2, Community Edition prior to 6.2.4, Enterprise Edition prior to 6.2.1 and gitlab-shell prior to 1.7.8 allows remote authenticated users ...
Gitlab Gitlab
Gitlab Gitlab-shell
8.8
CVSSv3
CVE-2013-4583
The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 prior to 5.4.2, Community Edition prior to 6.2.4, and Enterprise Edition prior to 6.2.1 and gitlab-shell prior to 1.7.8 allows remote authenticated users to gain privileges and clone arbitrary repositories.
Gitlab Gitlab
Gitlab Gitlab-shell
6.1
CVSSv3
CVE-2021-20315
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within CentOS Stream 8, when the "Application menu" or "Window list" GNOME extensions are enabled. This flaw allows a physical attacker who has access to a locked system to k...
Gnome Gnome-shell
Centos Stream 8
7.5
CVSSv3
CVE-2020-24387
An issue exists in the yh_create_session() function of yubihsm-shell up to and including 2.0.2. The function does not explicitly check the returned session id from the device. An invalid session id would lead to out-of-bounds read and write operations in the session array. This c...
Yubico Yubihsm-shell
Fedoraproject Fedora 33
7.5
CVSSv3
CVE-2020-24388
An issue exists in the _send_secure_msg() function of yubihsm-shell up to and including 2.0.2. The function does not validate the embedded length field of a message received from the device. This could lead to an oversized memcpy() call that will crash the running process. This c...
Yubico Yubihsm-shell
Fedoraproject Fedora 33
NA
CVE-2007-2848
Stack-based buffer overflow in the SetPath function in the shComboBox ActiveX control (shcmb80.ocx) in Sky Software Shell MegaPack ActiveX 8.0 allows remote malicious users to execute arbitrary code via a long argument. NOTE: the provenance of this information is unknown; the det...
Sky Software Shell Megapack Activex 8.0
Sky Software Shcombobox Activex Control
4.3
CVSSv3
CVE-2020-17489
An issue exists in certain configurations of GNOME gnome-shell up to and including 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password shown in cleartext at login ti...
Gnome Gnome-shell
Canonical Ubuntu Linux 20.04
Debian Debian Linux 9.0
Opensuse Leap 15.2
4.3
CVSSv3
CVE-2019-3820
It exists that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical access to a locked workstation could invoke certain keyboard shortcuts, and potentially other actions.
Gnome Gnome-shell
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Leap 42.3
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »