VDB

GCVE-VVD-MAGEIA-2021-3

GCVE-VVD-MAGEIA-2021-3
Advisory Published
Vulnetix · Advisory published January 8, 2021
Kevin Backhouse discovered that GDM incorrectly launched the initial setup tool when the accountsservice daemon was not reachable. A local attacker able to cause accountsservice to crash or stop responding could trick GDM into launching the initial setup tool and create a privileged user (CVE-2020-16125).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiagdm0 (affected), 3.32.0-1.1.mga7 (unaffected), 0 (affected), 3.32.0-1.1.mga7 (unaffected)
Mageiasmartmontools0 (affected), 7.2-1.mga7 (unaffected)

Aliases

CVE-2020-16125

Transitive aliases

EUVD-2020-8091GHSA-pc8h-hq5p-vf38

References

Updated gdm packages fix a security vulnerability
advisory
Updated gdm packages fix a security vulnerability
issue
Updated gdm packages fix a security vulnerability
issue
Updated gdm packages fix a security vulnerability
advisory
Updated smartmontools package improves compatibility
advisory
Updated smartmontools package improves compatibility
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›