Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gtk vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2016-2812
Race condition in the get implementation in the ServiceWorkerManager class in the Service Worker subsystem in Mozilla Firefox prior to 46.0 allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted w...
Mozilla Firefox
383
VMScore
CVE-2016-2816
Mozilla Firefox prior to 46.0 allows remote malicious users to bypass the Content Security Policy (CSP) protection mechanism via the multipart/x-mixed-replace content type.
Mozilla Firefox
383
VMScore
CVE-2016-2817
The WebExtension sandbox feature in browser/components/extensions/ext-tabs.js in Mozilla Firefox prior to 46.0 does not properly restrict principal inheritance during chrome.tabs.create and chrome.tabs.update API calls, which allows remote malicious users to conduct Universal XSS...
Mozilla Firefox
383
VMScore
CVE-2016-2820
The Firefox Health Reports (aka FHR or about:healthreport) feature in Mozilla Firefox prior to 46.0 does not properly restrict the origin of events, which makes it easier for remote malicious users to modify sharing preferences by leveraging access to the remote-report IFRAME ele...
Mozilla Firefox
890
VMScore
CVE-2016-2804
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 46.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.5.2
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox
Mozilla Firefox Esr 38.7.1
Mozilla Firefox Esr 38.7.0
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.1.1
1 Article
435
VMScore
CVE-2016-9951
An issue exists in Apport prior to 2.20.4. A malicious Apport crash file can contain a restart command in `RespawnCommand` or `ProcCmdline` fields. This command will be executed if a user clicks the Relaunch button on the Apport prompt from the malicious crash file. The fix is to...
Apport Project Apport
1 EDB exploit
1 Github repository
605
VMScore
CVE-2007-6183
Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions prior to 20071127, allows context-dependent malicious users to execute arbitrary code via format string specifiers in the messag...
Ruby Gnome2 Ruby Gnome2 0.16.0
294
VMScore
CVE-2015-5310
The WNM Sleep Mode code in wpa_supplicant 2.x prior to 2.6 does not properly ignore key data in response frames when management frame protection (MFP) was not negotiated, which allows remote malicious users to inject arbitrary broadcast or multicast packets or cause a denial of s...
Google Android 6.0.1
Google Android 6.0
Google Android 4.4.4
Google Android 5.0
Google Android 5.1.1
642
VMScore
CVE-2022-23220
USBView 2.1 prior to 2.2 allows some local users (e.g., ones logged in via SSH) to execute arbitrary code as root because certain Polkit settings (e.g., allow_any=yes) for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option....
Usbview Project Usbview
605
VMScore
CVE-2019-18397
A buffer overflow in the fribidi_get_par_embedding_levels_ex() function in lib/fribidi-bidi.c of GNU FriBidi up to and including 1.0.7 allows an malicious user to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this ...
Gnu Fribidi
Debian Debian Linux 10.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »