3.7

CVE-2006-2452

EPSS 0.1%
Published 09.06.2006 10:02:00
Last modified 03.04.2025 01:03:51
Source secalert@redhat.com
Teams watchlist Login
Open Login

GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges.

Affected products Warnungen 0 Metrics 2 CWE 0 References 17

Data is provided by the National Vulnerability Database (NVD)

Gnome ≫ Gdm Version2.8

Gnome ≫ Gdm Version2.12

Gnome ≫ Gdm Version2.14

Gnome ≫ Gdm Version2.15

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.287

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	3.7	1.9	6.4	AV:L/AC:H/Au:N/C:P/I:P/A:P

http://lists.suse.com/archive/suse-security-announce/2006-Jun/0003.html

http://secunia.com/advisories/20627

http://bugzilla.gnome.org/show_bug.cgi?id=343476

http://secunia.com/advisories/20532

http://secunia.com/advisories/20552

http://secunia.com/advisories/20587

http://secunia.com/advisories/20636

http://www.gentoo.org/security/en/glsa/glsa-200606-14.xml

http://www.mandriva.com/security/advisories?name=MDKSA-2006:100

http://www.securityfocus.com/archive/1/436428

http://www.securityfocus.com/bid/18332

http://www.vupen.com/english/advisories/2006/2239

https://exchange.xforce.ibmcloud.com/vulnerabilities/27018

https://usn.ubuntu.com/293-1/

https://nvd.nist.gov/vuln/detail/CVE-2006-2452

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-2452

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-2452

EUVD