gnome

341 tracked vulnerabilities.

CVE-2018-16428 CRITICAL
GNOME GLib - NULL Pointer Dereference in g_markup_parse_context_end_parse
Sep 04, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-15120 MEDIUM
Pango 1.40.8-1.42.3 - Denial of Service via Invalid Unicode Sequences
Aug 24, 2018
CVSS 6.5
EPSS 0.06
CVE-2018-14424 HIGH
GNOME Display Manager < 3.29.1 - Use-After-Free via D-Bus Interface
Aug 14, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-10900 HIGH
Network Manager VPNC Username Privilege Escalation
Jul 26, 2018
CVSS 7.8
EPSS 0.15
CVE-2018-12910 CRITICAL
libsoup 2.63.2 - Out-of-bounds Read via Empty Hostname in get_cookies
Jul 05, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-12422 CRITICAL
Evolution-Data-Server <3.29.2 - Buffer Overflow
Jun 15, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-12016 HIGH
GNOME Web < 3.28.2.1 - Denial of Service via window.open and document.write
Jun 07, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-11713 MEDIUM
WebKitGTK+ <2.20.0 - Info Disclosure
Jun 04, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-11396 HIGH
GNOME Web < 3.28.2.1 - Denial of Service via NULL URL Access
May 23, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-10767 MEDIUM
libgxps < 0.3.0 - Denial of Service via Stack-Based Buffer Over-Read in gxps_images_guess_content_type
May 06, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-10733 MEDIUM
libgxps < 0.3.0 - Denial of Service via Heap-Based Buffer Over-Read in ft_font_face_hash
May 04, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-1000135 HIGH
GNOME NetworkManager <1.10.2 - Info Disclosure
Mar 20, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-1000041 HIGH
GNOME librsvg before 2.41.2 - Information Disclosure
Feb 09, 2018
CVSS 8.8
EPSS 0.01
CVE-2018-5345 HIGH
GNOME gcab <0.7.4 - Buffer Overflow
Jan 12, 2018
CVSS 7.8
EPSS 0.01
CVE-2017-12447 HIGH
gdk-pixbuf - Denial of Service via Crafted File Folder
Mar 07, 2019
CVSS 7.8
EPSS 0.00
CVE-2017-12164 MEDIUM
gnome_display_manager 3.24.1 - Unauthenticated Screen Unlock Bypass via Autologin Greeter
Jul 26, 2018
CVSS 4.1
EPSS 0.00
CVE-2017-17689 MEDIUM
9folders nine - Plaintext Exfiltration via S/MIME CBC Malleability-Gadget Attack
May 16, 2018
CVSS 5.9
EPSS 0.00
CVE-2017-2885 CRITICAL
libsoup 2.58 - Stack-based Buffer Overflow via HTTP Request
Apr 24, 2018
CVSS 9.8
EPSS 0.06
CVE-2017-1000422 HIGH
Gnome gdk-pixbuf <2.36.8 - Memory Corruption
Jan 02, 2018
CVSS 8.8
EPSS 0.01
CVE-2017-1000159 HIGH
Evince <3.25.91 - Command Injection
Nov 27, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-14604 MEDIUM
GNOME Nautilus <3.23.90 - Info Disclosure
Sep 20, 2017
CVSS 6.5
EPSS 0.04
CVE-2017-2870 HIGH
Gdk-Pixbuf 2.36.6 - Integer Overflow in TIFF Image Parser
Sep 05, 2017
CVSS 7.8
EPSS 0.02
CVE-2017-2862 HIGH
Gdk-Pixbuf 2.36.6 - Heap Overflow via JPEG Image Loading
Sep 05, 2017
CVSS 7.8
EPSS 0.05
CVE-2017-14108 MEDIUM
GNOME gedit < 3.22.1 - Denial of Service via File with Leading Null Bytes
Sep 05, 2017
CVSS 5.5
EPSS 0.01
CVE-2017-1000083 HIGH
Evince CBT File Command Injection
Sep 05, 2017
CVSS 7.8
EPSS 0.77
Products
glib 26 libsoup 24 evolution 21 gdk-pixbuf 20 gdm 15 gtk 15 epiphany 13 networkmanager 12 gdkpixbuf 11 gnome-shell 11 screensaver 11 gnome_display_manager 10 librsvg 10 evince 7 pango 6 gpdf 5 gvfs 5 libcroco 5 nautilus 4 balsa 3 evolution-data-server 3 file-roller 3 gnumeric 3 gthumb 3 gtk-vnc 3 libgsf 3 libgxps 3 Gdk-Pixbuf 2 control_center 2 dwarf_http_server 2
Quick Filters
Critical CVEs With Exploits In CISA KEV