Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome gdm vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2000-0491
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote malicious users to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
Gnome Gdm 1.0
Caldera Openlinux
Suse Suse Linux 6.2
Suse Suse Linux 6.4
2 EDB exploits
7.2
CVSSv2
CVE-2011-1709
GNOME Display Manager (gdm) prior to 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.
Gnome Gdm 2.13
Gnome Gdm 2.14
Gnome Gdm 2.20
Gnome Gdm 2.23
Gnome Gdm 2.5
Gnome Gdm 2.28
Gnome Gdm 2.2
Gnome Gdm 1.0
Gnome Gdm 2.15
Gnome Gdm 2.16
Gnome Gdm 2.24
Gnome Gdm 2.25
Gnome Gdm 2.30
Gnome Gdm 2.31
Gnome Gdm 2.32.1
Gnome Gdm 2.18
Gnome Gdm 2.19
Gnome Gdm 2.26
Gnome Gdm 2.17
Gnome Gdm 2.29
Gnome Gdm 2.4
Gnome Gdm 2.3
6.9
CVSSv2
CVE-2019-3825
A vulnerability exists in gdm prior to 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by selecting the timed login user and waiting for the timer to expire, at which time they would gain access to the logged-in user's session.
Gnome Gnome Display Manager
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Redhat Enterprise Linux 7.0
6.9
CVSSv2
CVE-2017-12164
A flaw exists in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean during autologin. If autologin was enabled for a victim, an attacker could simply select 'login as another user' to unlock their screen.
Gnome Gnome Display Manager 3.24.1
6.9
CVSSv2
CVE-2011-0727
GNOME Display Manager (gdm) 2.x prior to 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon file under /var/cache/gdm/.
Gnome Gdm 2.2
Gnome Gdm 2.3
Gnome Gdm 2.16
Gnome Gdm 2.17
Gnome Gdm 2.0
Gnome Gdm 2.14
Gnome Gdm 2.15
Gnome Gdm 2.22
Gnome Gdm 2.23
Gnome Gdm 2.30
Gnome Gdm 2.31
Gnome Gdm 2.4
Gnome Gdm 2.5
Gnome Gdm 2.6
Gnome Gdm 2.18
Gnome Gdm 2.19
Gnome Gdm 2.26
Gnome Gdm 2.27
Gnome Gdm 2.8
Gnome Gdm 2.13
Gnome Gdm 2.20
Gnome Gdm 2.21
6.8
CVSSv2
CVE-2009-2697
The Red Hat build script for the GNOME Display Manager (GDM) prior to 2.16.0-56 on Red Hat Enterprise Linux (RHEL) 5 omits TCP Wrapper support, which might allow remote malicious users to bypass intended access restrictions via XDMCP connections, a different vulnerability than CV...
Gnome Gdm 2.14
Gnome Gdm 2.13
Gnome Gdm 1.0
Gnome Gdm 0.7
Gnome Gdm 2.8
Gnome Gdm 2.6
Gnome Gdm
Gnome Gdm 2.15
Gnome Gdm 2.2
Gnome Gdm 2.0
Gnome Gdm 2.5
Gnome Gdm 2.4
Gnome Gdm 2.3
5
CVSSv2
CVE-2003-0548
The X Display Manager Control Protocol (XDMCP) support for GDM prior to 2.4.1.6 allows malicious users to cause a denial of service (daemon crash) when a chosen host expires, a different issue than CVE-2003-0549.
Gnome Gdm 2.4.1.2
Gnome Gdm 2.4.1.3
Redhat Kdebase 2.2.3.1.20
Redhat Kdebase 2.2.3.1.22
Gnome Gdm 2.2.0
Gnome Gdm 2.4.1.6
Redhat Kdebase 2.0 Beta2.45
Gnome Gdm 2.4.1
Gnome Gdm 2.4.1.1
Gnome Gdm 2.4.1.4
Gnome Gdm 2.4.1.5
Redhat Kdebase 2.4.0.7.13
Redhat Kdebase 2.4.1.3.5
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
5
CVSSv2
CVE-2003-0549
The X Display Manager Control Protocol (XDMCP) support for GDM prior to 2.4.1.6 allows malicious users to cause a denial of service (daemon crash) via a short authorization key name.
Gnome Gdm 2.4.1.3
Gnome Gdm 2.4.1.4
Redhat Kdebase 2.2.3.1.22
Redhat Kdebase 2.4.0.7.13
Gnome Gdm 2.2.0
Gnome Gdm 2.4.1
Redhat Kdebase 2.0 Beta2.45
Gnome Gdm 2.4.1.1
Gnome Gdm 2.4.1.2
Redhat Kdebase 2.2.3.1.20
Gnome Gdm 2.4.1.5
Gnome Gdm 2.4.1.6
Redhat Kdebase 2.4.1.3.5
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
5
CVSSv2
CVE-2000-0504
libICE in XFree86 allows remote malicious users to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.
Gnome Gdm 1.0
Gnome Gdm 1.1
Open Group X 11.0r5
Open Group X 11.0r6.4
Xfree86 Project X11r6 3.3.3
Xfree86 Project X11r6 3.3.4
Xfree86 Project X11r6 3.3.5
Xfree86 Project X11r6 3.3.6
Open Group X 11.0r6
Open Group X 11.0r6.2
Xfree86 Project X11r6 4.0
Open Group X 11.0r6.1
Open Group X 11.0r6.3
1 EDB exploit
4.6
CVSSv2
CVE-2020-16125
gdm3 versions prior to 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can't contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be be chained with an additional issue that could allow a local user to cr...
Gnome Gnome Display Manager
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »