Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome-terminal vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2008-5143
mgt-helper in multi-gnome-terminal 1.6.2 allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/*.debug or (2) /tmp/*.env temporary file.
Mohammed Sameer Multi-gnome-terminal 1.6.2
3.5
CVSSv2
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) prior to 0.28.1 allows remote authenticated users to cause a denial of service (CPU and memory consumption and crash) via a crafted file, as demonstrated by a file containing the string "\03...
Gnome Gnome-terminal
Opensuse Opensuse 12.1
Opensuse Opensuse 11.4
Oracle Solaris 11.2
6.8
CVSSv2
CVE-2003-0070
VTE, as used by default in gnome-terminal terminal emulator 2.2 and as an option in gnome-terminal 2.0, allows malicious users to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the...
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.22.5
Nalin Dahyabhai Vte 0.12.2
Nalin Dahyabhai Vte 0.24.3
Nalin Dahyabhai Vte 0.25.1
Nalin Dahyabhai Vte 0.14.2
Nalin Dahyabhai Vte 0.16.14
Nalin Dahyabhai Vte 0.11.21
Nalin Dahyabhai Vte 0.15.0
Gnome Gnome-terminal 2.0
Gnome Gnome-terminal 2.2
4
CVSSv2
CVE-2012-2738
The VteTerminal in gnome-terminal (vte) prior to 0.32.2 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count value.
Nalin Dahyabhai Vte 0.31.0
Nalin Dahyabhai Vte 0.30.1
Nalin Dahyabhai Vte 0.27.90
Nalin Dahyabhai Vte 0.27.5
Nalin Dahyabhai Vte 0.26.1
Nalin Dahyabhai Vte 0.26.0
Nalin Dahyabhai Vte 0.25.91
Nalin Dahyabhai Vte 0.23.2
Nalin Dahyabhai Vte 0.23.1
Nalin Dahyabhai Vte 0.21.7
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.29.0
Nalin Dahyabhai Vte 0.28.2
Nalin Dahyabhai Vte 0.27.2
Nalin Dahyabhai Vte 0.27.1
Nalin Dahyabhai Vte 0.24.1
Nalin Dahyabhai Vte 0.24.0
Nalin Dahyabhai Vte 0.22.3
Nalin Dahyabhai Vte 0.22.2
Nalin Dahyabhai Vte 0.21.3
Nalin Dahyabhai Vte 0.21.2
1 EDB exploit
6.8
CVSSv2
CVE-2010-2713
The vte_sequence_handler_window_manipulation function in vteseq.c in libvte (aka libvte9) in VTE 0.25.1 and previous versions, as used in gnome-terminal, does not properly handle escape sequences, which allows remote malicious users to execute arbitrary commands or obtain potenti...
Nalin Dahyabhai Vte 0.20.5
Nalin Dahyabhai Vte 0.17.4
Nalin Dahyabhai Vte 0.16.14
Nalin Dahyabhai Vte 0.14.2
Nalin Dahyabhai Vte 0.24.3
Nalin Dahyabhai Vte 0.22.5
Nalin Dahyabhai Vte 0.15.0
Nalin Dahyabhai Vte
Nalin Dahyabhai Vte 0.12.2
Nalin Dahyabhai Vte 0.11.21
NA
CVE-2023-1523
Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. Graphical terminal emulators like xterm, gnome-te...
Canonical Snapd
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 22.04
Canonical Ubuntu Linux 22.10
Canonical Ubuntu Linux 23.04
NA
CVE-2023-28100
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions before 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contain a vulnerability similar to CVE-2017-5226, but using the `TIOCLINUX` ioctl command instead of `TIOCSTI`. If a Flatpak app...
Flatpak Flatpak
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started