gnome
357 tracked vulnerabilities.
CVE-2021-45087
MEDIUM
Epiphany < 40.4 and 41.x < 41.1 - Cross-Site Scripting via View Source or Reader Mode
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-45086
MEDIUM
GNOME Web < 40.4 and 41.x < 41.1 - Cross-Site Scripting via PDF.js Filename Handling
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-45085
MEDIUM
GNOME Web < 40.4 and 41.x < 41.1 - Cross-Site Scripting via about: Page
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-39365
MEDIUM
GNOME grilo <= 0.3.13 - Improper Certificate Validation in SoupSessionAsync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39361
MEDIUM
GNOME evolution-rss < 0.3.96 - Improper Certificate Validation
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39360
MEDIUM
libzapojit < 0.0.3 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39359
MEDIUM
GNOME libgda < 6.0.0 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39358
MEDIUM
libgfbgraph < 0.2.4 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-20240
HIGH
gdk-pixbuf < 2.42.0 - Integer Underflow via Crafted GIF Image
May 28, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-20297
MEDIUM
NetworkManager < 1.30.0 - Denial of Service via Profile Activation with match.path
May 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-33516
HIGH
GUPnP < 1.0.7, 1.1.x, < 1.2.5 - DNS Rebinding via UPnP Service
May 24, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-28650
MEDIUM
gnome-autoar < 0.3.1 - Directory Traversal via Symlink Handling
Mar 17, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-28153
MEDIUM
GNOME GLib <2.66.8 - Info Disclosure
Mar 11, 2021
CVSS 5.3
EPSS 0.03
CVE-2021-27219
HIGH
GNOME GLib <2.66.6, <2.67.3 - Memory Corruption
Feb 15, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-27218
HIGH
GNOME GLib <2.66.7 & <2.67.4 - Info Disclosure
Feb 15, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-3349
LOW
GNOME Evolution < 3.38.3 - Insufficient Verification of Data Authenticity via GnuPG API
Feb 01, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-37011
HIGH
Gnome Fonts Viewer 3.34.0 - Memory Corruption
Jan 29, 2026
CVSS 7.5
EPSS 0.00
CVE-2020-36774
MEDIUM
GNOME Glade < 3.38.1 and 3.39.x < 3.40.0 - Denial of Service via Widget Rebuilding
Feb 19, 2024
CVSS 5.5
EPSS 0.00
CVE-2020-36427
MEDIUM
GNOME gThumb <3.10.1 - Info Disclosure
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-36314
LOW
GNOME file-roller < 3.38.0 - Directory Traversal via Symlink Parent Check Bypass
Apr 07, 2021
CVSS 3.9
EPSS 0.01
CVE-2020-14391
MEDIUM
GNOME Control Center - Insufficiently Protected Credentials via System Registration
Feb 08, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-36241
MEDIUM
gnome-autoar < 0.2.4 - Directory Traversal via Symlink Parent Check Bypass
Feb 05, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-27837
MEDIUM
gnome_display_manager < 3.38.2.1 - Unauthenticated Lock Screen Bypass via Race Condition
Dec 28, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-29385
MEDIUM
GNOME gdk-pixbuf < 2.42.2 - Denial of Service via Infinite Loop in LZW Decompression
Dec 26, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-35457
HIGH
GNOME GLib < 2.65.3 - Integer Overflow in g_option_group_add_entries
Dec 14, 2020
CVSS 7.8
EPSS 0.01
Products
glib 33
libsoup 26
evolution 21
gdk-pixbuf 20
gdm 15
gtk 15
epiphany 13
networkmanager 12
gdkpixbuf 11
gnome-shell 11
screensaver 11
gnome_display_manager 10
librsvg 10
GLib 7
evince 7
pango 6
gpdf 5
gvfs 5
libcroco 5
nautilus 4
balsa 3
evolution-data-server 3
file-roller 3
gnumeric 3
gthumb 3
gtk-vnc 3
libgsf 3
libgxps 3
libxml2 3
localsearch 3
Quick Filters