gnome

357 tracked vulnerabilities.

CVE-2021-45087 MEDIUM
Epiphany < 40.4 and 41.x < 41.1 - Cross-Site Scripting via View Source or Reader Mode
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-45086 MEDIUM
GNOME Web < 40.4 and 41.x < 41.1 - Cross-Site Scripting via PDF.js Filename Handling
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-45085 MEDIUM
GNOME Web < 40.4 and 41.x < 41.1 - Cross-Site Scripting via about: Page
Dec 16, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-39365 MEDIUM
GNOME grilo <= 0.3.13 - Improper Certificate Validation in SoupSessionAsync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39361 MEDIUM
GNOME evolution-rss < 0.3.96 - Improper Certificate Validation
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39360 MEDIUM
libzapojit < 0.0.3 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39359 MEDIUM
GNOME libgda < 6.0.0 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-39358 MEDIUM
libgfbgraph < 0.2.4 - Improper Certificate Validation in SoupSessionSync
Aug 22, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-20240 HIGH
gdk-pixbuf < 2.42.0 - Integer Underflow via Crafted GIF Image
May 28, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-20297 MEDIUM
NetworkManager < 1.30.0 - Denial of Service via Profile Activation with match.path
May 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-33516 HIGH
GUPnP < 1.0.7, 1.1.x, < 1.2.5 - DNS Rebinding via UPnP Service
May 24, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-28650 MEDIUM
gnome-autoar < 0.3.1 - Directory Traversal via Symlink Handling
Mar 17, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-28153 MEDIUM
GNOME GLib <2.66.8 - Info Disclosure
Mar 11, 2021
CVSS 5.3
EPSS 0.03
CVE-2021-27219 HIGH
GNOME GLib <2.66.6, <2.67.3 - Memory Corruption
Feb 15, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-27218 HIGH
GNOME GLib <2.66.7 & <2.67.4 - Info Disclosure
Feb 15, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-3349 LOW
GNOME Evolution < 3.38.3 - Insufficient Verification of Data Authenticity via GnuPG API
Feb 01, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-37011 HIGH
Gnome Fonts Viewer 3.34.0 - Memory Corruption
Jan 29, 2026
CVSS 7.5
EPSS 0.00
CVE-2020-36774 MEDIUM
GNOME Glade < 3.38.1 and 3.39.x < 3.40.0 - Denial of Service via Widget Rebuilding
Feb 19, 2024
CVSS 5.5
EPSS 0.00
CVE-2020-36427 MEDIUM
GNOME gThumb <3.10.1 - Info Disclosure
Jul 19, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-36314 LOW
GNOME file-roller < 3.38.0 - Directory Traversal via Symlink Parent Check Bypass
Apr 07, 2021
CVSS 3.9
EPSS 0.01
CVE-2020-14391 MEDIUM
GNOME Control Center - Insufficiently Protected Credentials via System Registration
Feb 08, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-36241 MEDIUM
gnome-autoar < 0.2.4 - Directory Traversal via Symlink Parent Check Bypass
Feb 05, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-27837 MEDIUM
gnome_display_manager < 3.38.2.1 - Unauthenticated Lock Screen Bypass via Race Condition
Dec 28, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-29385 MEDIUM
GNOME gdk-pixbuf < 2.42.2 - Denial of Service via Infinite Loop in LZW Decompression
Dec 26, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-35457 HIGH
GNOME GLib < 2.65.3 - Integer Overflow in g_option_group_add_entries
Dec 14, 2020
CVSS 7.8
EPSS 0.01