Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-5535
gnome-system-log polkit policy allows arbitrary files on the system to be read
Gnome Gnome-system-log -
Fedoraproject Fedora 17
Fedoraproject Fedora 18
3.5
CVSSv2
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) prior to 0.28.1 allows remote authenticated users to cause a denial of service (CPU and memory consumption and crash) via a crafted file, as demonstrated by a file containing the string "\03...
Gnome Gnome-terminal
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Oracle Solaris 11.2
4.6
CVSSv2
CVE-2005-2944
The perform_file_save function in GNOME Workstation Command Center (gwcc) 0.9.6 and previous versions allows local users to create and overwrite arbitrary files via a symlink attack on the gwcc_out.txt temporary file.
Brent Ely Gnome Workstation Command Center 0.9.8
Brent Ely Gnome Workstation Command Center
1.9
CVSSv2
CVE-2020-17489
An issue exists in certain configurations of GNOME gnome-shell up to and including 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password shown in cleartext at login ti...
Gnome Gnome-shell
Debian Debian Linux 9.0
Canonical Ubuntu Linux 20.04
Opensuse Leap 15.2
2.1
CVSSv2
CVE-2012-0948
DistUpgrade/DistUpgradeMain.py in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uses weak permissions for (1) apt-clone_system_state.tar.gz and (2) system_state.tar.gz, which allows local users to obtain repository credentials.
Canonical Ubuntu Linux 11.04
Gnome Update-manager-core 0.152.25.10
Gnome Update-manager-core 0.150.5.2
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Gnome Update-manager-core 0.156.14.3
5.8
CVSSv2
CVE-2020-12825
libcroco up to and including 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.
Gnome Libcroco
7.5
CVSSv2
CVE-2005-2958
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 (libgda2) 1.2.1 and previous versions allow malicious users to execute arbitrary code.
Gnome Libgda2
5.8
CVSSv2
CVE-2021-33516
An issue exists in GUPnP prior to 1.0.7 and 1.1.x and 1.2.x prior to 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering actions against local UPnP services implemented using this library. Depending o...
Gnome Gupnp
6.8
CVSSv2
CVE-2011-3146
librsvg prior to 2.34.1 uses the node name to identify the type of node, which allows context-dependent malicious users to cause a denial of service (NULL pointer dereference) and possibly execute arbitrary code via a SVG file with a node with the element name starting with "...
Gnome Librsvg
2.1
CVSSv2
CVE-2007-0010
The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) prior to 2.4.13 allows context-dependent malicious users to cause a denial of service (crash) via a malformed image file.
Gnome Gtk
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
8
9
10
NEXT »