Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome gnome-terminal vulnerabilities and exploits
(subscribe to this query)
614
VMScore
CVE-2008-5143
mgt-helper in multi-gnome-terminal 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/*.debug or (2) /tmp/*.env temporary file.
Mohammed Sameer Multi-gnome-terminal 1.6.2
312
VMScore
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) prior to 0.28.1 allows remote authenticated users to cause a denial of service (CPU and memory consumption and crash) via a crafted file, as demonstrated by a file containing the string "\03...
Gnome Gnome-terminal
Opensuse Opensuse 12.1
Opensuse Opensuse 11.4
Oracle Solaris 11.2
605
VMScore
CVE-2003-0070
VTE, as used by default in gnome-terminal terminal emulator 2.2 and as an option in gnome-terminal 2.0, allows malicious users to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the...
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.22.5
Nalin Dahyabhai Vte 0.12.2
Nalin Dahyabhai Vte 0.24.3
Nalin Dahyabhai Vte 0.25.1
Nalin Dahyabhai Vte 0.14.2
Nalin Dahyabhai Vte 0.16.14
Nalin Dahyabhai Vte 0.11.21
Nalin Dahyabhai Vte 0.15.0
Gnome Gnome-terminal 2.0
Gnome Gnome-terminal 2.2
405
VMScore
CVE-2012-2738
The VteTerminal in gnome-terminal (vte) prior to 0.32.2 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count value.
Nalin Dahyabhai Vte 0.31.0
Nalin Dahyabhai Vte 0.30.1
Nalin Dahyabhai Vte 0.27.90
Nalin Dahyabhai Vte 0.27.5
Nalin Dahyabhai Vte 0.26.1
Nalin Dahyabhai Vte 0.26.0
Nalin Dahyabhai Vte 0.25.91
Nalin Dahyabhai Vte 0.23.2
Nalin Dahyabhai Vte 0.23.1
Nalin Dahyabhai Vte 0.21.7
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.29.0
Nalin Dahyabhai Vte 0.28.2
Nalin Dahyabhai Vte 0.27.2
Nalin Dahyabhai Vte 0.27.1
Nalin Dahyabhai Vte 0.24.1
Nalin Dahyabhai Vte 0.24.0
Nalin Dahyabhai Vte 0.22.3
Nalin Dahyabhai Vte 0.22.2
Nalin Dahyabhai Vte 0.21.3
Nalin Dahyabhai Vte 0.21.2
1 EDB exploit
605
VMScore
CVE-2010-2713
The vte_sequence_handler_window_manipulation function in vteseq.c in libvte (aka libvte9) in VTE 0.25.1 and previous versions, as used in gnome-terminal, does not properly handle escape sequences, which allows remote malicious users to execute arbitrary commands or obtain potenti...
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.16.14
Nalin Dahyabhai Vte 0.14.2
Nalin Dahyabhai Vte 0.24.3
Nalin Dahyabhai Vte 0.22.5
Nalin Dahyabhai Vte 0.15.0
Nalin Dahyabhai Vte
Nalin Dahyabhai Vte 0.12.2
Nalin Dahyabhai Vte 0.11.21
NA
CVE-2023-1523
Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. Graphical terminal emulators like xterm, gnome-te...
Canonical Snapd
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 22.04
Canonical Ubuntu Linux 22.10
Canonical Ubuntu Linux 23.04
NA
CVE-2023-28100
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions before 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contain a vulnerability similar to CVE-2017-5226, but using the `TIOCLINUX` ioctl command instead of `TIOCSTI`. If a Flatpak app...
Flatpak Flatpak
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started