vulnerability
Oracle Linux: CVE-2024-36472: ELSA-2024-5298: gnome-shell security update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:A/AC:M/Au:N/C:C/I:C/A:C) | May 28, 2024 | Oct 16, 2024 | Dec 3, 2025 |
Severity
8
CVSS
(AV:A/AC:M/Au:N/C:C/I:C/A:C)
Published
May 28, 2024
Added
Oct 16, 2024
Modified
Dec 3, 2025
Description
In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.
A vulnerability was found in GNOME Shell. A portal helper can be launched automatically without user confirmation based on the network responses provided by an adversary.
A vulnerability was found in GNOME Shell. A portal helper can be launched automatically without user confirmation based on the network responses provided by an adversary.
Solutions
oracle-linux-upgrade-gnome-classic-sessionoracle-linux-upgrade-gnome-shelloracle-linux-upgrade-gnome-shell-extension-apps-menuoracle-linux-upgrade-gnome-shell-extension-auto-move-windowsoracle-linux-upgrade-gnome-shell-extension-classification-banneroracle-linux-upgrade-gnome-shell-extension-commonoracle-linux-upgrade-gnome-shell-extension-custom-menuoracle-linux-upgrade-gnome-shell-extension-dash-to-dockoracle-linux-upgrade-gnome-shell-extension-dash-to-paneloracle-linux-upgrade-gnome-shell-extension-desktop-iconsoracle-linux-upgrade-gnome-shell-extension-drive-menuoracle-linux-upgrade-gnome-shell-extension-gesture-inhibitororacle-linux-upgrade-gnome-shell-extension-heads-up-displayoracle-linux-upgrade-gnome-shell-extension-launch-new-instanceoracle-linux-upgrade-gnome-shell-extension-native-window-placementoracle-linux-upgrade-gnome-shell-extension-panel-favoritesoracle-linux-upgrade-gnome-shell-extension-places-menuoracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizeroracle-linux-upgrade-gnome-shell-extension-systemmonitororacle-linux-upgrade-gnome-shell-extension-top-iconsoracle-linux-upgrade-gnome-shell-extension-updates-dialogoracle-linux-upgrade-gnome-shell-extension-user-themeoracle-linux-upgrade-gnome-shell-extension-window-listoracle-linux-upgrade-gnome-shell-extension-windowsnavigatororacle-linux-upgrade-gnome-shell-extension-workspace-indicator
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.