vulnerability

Ubuntu: USN-7052-1 (CVE-2017-8288): GNOME Shell vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Apr 27, 2017	Oct 4, 2024	Aug 18, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Apr 27, 2017

Added

Oct 4, 2024

Modified

Aug 18, 2025

Description

It was discovered that GNOME Shell mishandled extensions that fail to
reload, possibly leading to extensions staying enabled on the lock screen.
An attacker could possibly use this issue to launch applications, view
sensitive information, or execute arbitrary commands. (CVE-2017-8288)

It was discovered that the GNOME Shell incorrectly handled certain
keyboard inputs. An attacker could possibly use this issue to invoke
keyboard shortcuts, and potentially other actions while the workstation
was locked. (CVE-2019-3820)

Solution

ubuntu-pro-upgrade-gnome-shell

References

CVE-2017-8288
https://attackerkb.com/topics/CVE-2017-8288
CWE-20
UBUNTU-USN-7052-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today