Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-3533
Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and prior to 2.24 allows remote malicious users to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp wi...
Gnome Yelp
Gnome Gnome 2.20
Gnome Gnome 2.22
1 EDB exploit
4.3
CVSSv2
CVE-2011-3201
GNOME Evolution prior to 3.2.3 allows user-assisted remote malicious users to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.
Oracle Solaris 11.2
Gnome Evolution 2.4
Gnome Evolution 2.0.1
Gnome Evolution 2.3.6
Gnome Evolution 1.11
Gnome Evolution 1.5
Gnome Evolution 1.2.4
Gnome Evolution 1.4.5
Gnome Evolution 1.4.6
Gnome Evolution 2.0.2
Gnome Evolution 2.12.3
Gnome Evolution 2.3.5
Gnome Evolution 1.4.4
Gnome Evolution 2.24.5
Gnome Evolution 2.26.1
Gnome Evolution 1.2.1
Gnome Evolution 2.3.2
Gnome Evolution 2.2
Gnome Evolution 2.6
Gnome Evolution 1.0.8
Gnome Evolution 2.22.1
Gnome Evolution
7.2
CVSSv2
CVE-2013-1050
The default configuration in gnome-screensaver 3.5.4 up to and including 3.6.0 sets the AutostartCondition line to fallback mode in the .desktop file, which prevents the program from starting automatically after login and allows physically proximate malicious users to bypass scre...
Gnome Gnome Screensaver 3.5.4
Gnome Gnome Screensaver 3.5.5
Gnome Gnome Screensaver 3.6.0
4.3
CVSSv2
CVE-2013-0240
Gnome Online Accounts (GOA) 3.4.x, 3.6.x prior to 3.6.3, and 3.7.x prior to 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle malicious users to obtain sensitive information such as...
Gnome Gnome Online Accounts 3.4.0
Gnome Gnome Online Accounts 3.4.1
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.7.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.4
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
6.8
CVSSv2
CVE-2009-2697
The Red Hat build script for the GNOME Display Manager (GDM) prior to 2.16.0-56 on Red Hat Enterprise Linux (RHEL) 5 omits TCP Wrapper support, which might allow remote malicious users to bypass intended access restrictions via XDMCP connections, a different vulnerability than CV...
Gnome Gdm 2.14
Gnome Gdm 2.13
Gnome Gdm 1.0
Gnome Gdm 0.7
Gnome Gdm 2.8
Gnome Gdm 2.6
Gnome Gdm
Gnome Gdm 2.15
Gnome Gdm 2.2
Gnome Gdm 2.0
Gnome Gdm 2.5
Gnome Gdm 2.4
Gnome Gdm 2.3
7.5
CVSSv2
CVE-2010-0409
Buffer overflow in the GMIME_UUENCODE_LEN macro in gmime/gmime-encodings.h in GMime prior to 2.4.15 allows context-dependent malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via input data for a uuencode operation.
Gnome Gmime 2.4.1
Gnome Gmime 2.4.0
Gnome Gmime 2.4.6
Gnome Gmime 2.4.4
Gnome Gmime 2.4.12
Gnome Gmime 2.4.11
Gnome Gmime 2.4.10
Gnome Gmime 2.4.3
Gnome Gmime 2.4.2
Gnome Gmime 2.4.9
Gnome Gmime 2.4.8
Gnome Gmime 2.4.7
Gnome Gmime 2.4.5
Gnome Gmime 2.4.13
6.8
CVSSv2
CVE-2008-5660
Format string vulnerability in the vinagre_utils_show_error function (src/vinagre-utils.c) in Vinagre 0.5.x prior to 0.5.2 and 2.x prior to 2.24.2 might allow remote malicious users to execute arbitrary code via format string specifiers in a crafted URI or VNC server response.
Gnome Vinagre 2.23.1
Gnome Vinagre 2.23.2
Gnome Vinagre 2.24.1
Gnome Vinagre 0.5.0
Gnome Vinagre 2.23.4
Gnome Vinagre 2.23.90
Gnome Vinagre 2.23.3
Gnome Vinagre 2.23.3.1
Gnome Vinagre 0.5.1
Gnome Vinagre 2.23.92
Gnome Vinagre 2.23.91
Gnome Vinagre 2.24.0
1 EDB exploit
4.3
CVSSv2
CVE-2013-1799
Gnome Online Accounts (GOA) 3.6.x prior to 3.6.3 and 3.7.x prior to 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle malicious users to obtain sensitive information such as credent...
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.4
Gnome Gnome Online Accounts 3.7.90
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.1
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
7.5
CVSSv2
CVE-2005-2550
Format string vulnerability in Evolution 1.4 up to and including 2.3.6.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Ca...
Gnome Evolution 1.4
Gnome Evolution 2.3.3
Gnome Evolution 2.3.4
Gnome Evolution 2.1
Gnome Evolution 2.2
Gnome Evolution 2.3.1
Gnome Evolution 2.3.2
Gnome Evolution 1.5
Gnome Evolution 2.0
Gnome Evolution 2.3.5
Gnome Evolution 2.3.6.1
4.3
CVSSv2
CVE-2013-6836
Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric prior to 1.12.9 allows remote malicious users to cause a denial of service (crash) via a crafted xls file with a crafted length value.
Gnome Gnumeric
Gnome Gnumeric 1.12.7
Gnome Gnumeric 1.12.0
Gnome Gnumeric 1.12.4
Gnome Gnumeric 1.12.3
Gnome Gnumeric 1.12.6
Gnome Gnumeric 1.12.5
Gnome Gnumeric 1.12.2
Gnome Gnumeric 1.12.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »