Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome gtk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2001-0928
Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 and previous versions may allow remote malicious users to execute arbitrary code via long authentication data.
Gnome Libgtop Daemon 1.0.12
Gnome Libgtop Daemon 1.0.13
Gnome Libgtop Daemon 1.0.6
Gnome Libgtop Daemon 1.0.7
Gnome Libgtop Daemon 1.0.9
7.2
CVSSv2
CVE-2014-1949
GTK+ 3.10.9 and previous versions, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate malicious users to bypass the lock screen by pressing the menu button.
Linuxmint Linux Mint 17.0
Gnome Gtk
Canonical Ubuntu 14.04
7.2
CVSSv2
CVE-2004-2693
HP-UX B.11.00 and B.11.11 with B6848AB GTK+ Support Libraries installed uses insecure directory permissions, which allows local users to gain privileges via files in /opt/gnome/src/GLib/.
Hp Hp-ux 11.00
Hp Hp-ux 11.11
Hp Hp-ux 11.04
7.2
CVSSv2
CVE-2001-0084
GTK+ library allows local users to specify arbitrary modules via the GTK_MODULES environmental variable, which could allow local users to gain privileges if GTK+ is used by a setuid/setgid program.
Gnome Gtk 1.2.8
1 EDB exploit
6.9
CVSSv2
CVE-2010-4831
Untrusted search path vulnerability in gdk/win32/gdkinput-win32.c in GTK+ prior to 2.21.8 allows local users to gain privileges via a Trojan horse Wintab32.dll file in the current working directory.
Gnome Gtk
6.8
CVSSv2
CVE-2019-18397
A buffer overflow in the fribidi_get_par_embedding_levels_ex() function in lib/fribidi-bidi.c of GNU FriBidi up to and including 1.0.7 allows an malicious user to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this ...
Gnu Fribidi
Debian Debian Linux 10.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2007-6183
Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions prior to 20071127, allows context-dependent malicious users to execute arbitrary code via format string specifiers in the messag...
Ruby Gnome2 Ruby Gnome2 0.16.0
6.2
CVSSv2
CVE-2010-0732
gdk/gdkwindow.c in GTK+ prior to 2.18.5, as used in gnome-screensaver prior to 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate malicious users to bypass screen ...
Gnome Gtk
Gnome Screensaver
5
CVSSv2
CVE-2013-7324
Webkit-GTK 2.x (any version with HTML5 audio/video support based on GStreamer) allows remote malicious users to trigger unexpectedly high sound volume via malicious javascript. NOTE: this WebKit-GTK behavior complies with existing W3C standards and existing practices for GNOME de...
Webkitgtk Webkitgtk
5
CVSSv2
CVE-2005-0372
Directory traversal vulnerability in gftp prior to 2.0.18 for GTK+ allows remote malicious FTP servers to read arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.
Gnome Gtk
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »