Vulnerability Description
GNOME Seahorse through 3.30 allows physically proximate attackers to read plaintext passwords by using the quickAllow dialog at an unattended workstation, if the keyring is unlocked. NOTE: this is disputed by a software maintainer because the behavior represents a design decision
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnome | Seahorse | <= 3.30 |
Related Weaknesses (CWE)
References
- https://bugs.launchpad.net/ubuntu/+source/seahorse/+bug/189774Issue TrackingThird Party Advisory
- https://bugs.launchpad.net/ubuntu/+source/seahorse/+bug/189774/comments/13Issue TrackingThird Party Advisory
- https://bugzilla.gnome.org/show_bug.cgi?id=551036Issue TrackingVendor Advisory
- https://www.bountysource.com/issues/3849352-seahorse-shows-passwords-without-verThird Party Advisory
- https://bugs.launchpad.net/ubuntu/+source/seahorse/+bug/189774Issue TrackingThird Party Advisory
- https://bugs.launchpad.net/ubuntu/+source/seahorse/+bug/189774/comments/13Issue TrackingThird Party Advisory
- https://bugzilla.gnome.org/show_bug.cgi?id=551036Issue TrackingVendor Advisory
- https://www.bountysource.com/issues/3849352-seahorse-shows-passwords-without-verThird Party Advisory
FAQ
What is CVE-2008-7320?
CVE-2008-7320 is a vulnerability with a CVSS score of 6.8 (MEDIUM). GNOME Seahorse through 3.30 allows physically proximate attackers to read plaintext passwords by using the quickAllow dialog at an unattended workstation, if the keyring is unlocked. NOTE: this is dis...
How severe is CVE-2008-7320?
CVE-2008-7320 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-7320?
Check the references section above for vendor advisories and patch information. Affected products include: Gnome Seahorse.