Unrated severityNVD Advisory· Published May 6, 2014· Updated May 6, 2026

CVE-2014-3203

Description

Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by pressing the SUPER key before the screen auto-locks.

Affected products

Ayatana Project/Unity7 versions
cpe:2.3:a:ayatana_project:unity:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ayatana_project:unity:*:*:*:*:*:*:*:*range: <=7.2.0
- cpe:2.3:a:ayatana_project:unity:7.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ayatana_project:unity:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ayatana_project:unity:7.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ayatana_project:unity:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ayatana_project:unity:7.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ayatana_project:unity:7.1.3:*:*:*:*:*:*:*
Canonical/Ubuntu Linux
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.launchpad.net/ubuntu/+source/unity/+bug/1308850nvdExploit
ubuntu.com/usn/usn-2184-1nvdVendor Advisory
www.openwall.com/lists/oss-security/2014/04/29/2nvd
www.openwall.com/lists/oss-security/2014/05/03/1nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000