First published: Tue Dec 10 2019(Updated: )
oVirt Node: Lock screen accepts F2 to drop to shell causing privilege escalation
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
oVirt Node | =2.6.0-1 | |
debian/undefined |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-0293 is a vulnerability in oVirt Node that allows an attacker to escalate privileges by using the F2 key to drop to a shell from the lock screen.
CVE-2013-0293 has a severity rating of 7.8 (High).
To fix CVE-2013-0293, users should update to a version of oVirt Node that is not affected by the vulnerability.
You can find more information about CVE-2013-0293 on the Debian Security Tracker and the Openwall mailing list.
The CWE for CVE-2013-0293 is CWE-269 (Improper Privilege Management).