Gnome Luki w zabezpieczeniach

Oś czasu

Rodzaj

Not Defined180
Image Processing Software2
Messaging Software2
Web Server2
Document Processing Software1

Produkt

GNOME Evolution16
GNOME glib12
GNOME gdk-pixbuf7
GNOME Epiphany7
GNOME NetworkManager7

Przeciwdziałanie

Official Fix129
Temporary Fix0
Workaround1
Unavailable1
Not Defined58

Wykorzystywanie

High0
Functional0
Proof-of-Concept32
Unproven0
Not Defined157

Wektor dostępu

Not Defined0
Physical1
Local60
Adjacent28
Network100

Uwierzytelnianie

Not Defined0
High0
Low43
None146

Interakcja z użytkownikiem

Not Defined0
Required26
None163

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤428
≤519
≤657
≤726
≤828
≤920
≤1011

CVSSv3 Temp

≤10
≤20
≤30
≤429
≤525
≤657
≤734
≤821
≤920
≤103

VulDB

≤10
≤20
≤31
≤441
≤514
≤662
≤716
≤828
≤914
≤1013

NVD

≤10
≤20
≤30
≤41
≤51
≤614
≤711
≤824
≤96
≤107

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤71
≤80
≤90
≤101

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k42
<2k77
<5k66
<10k2
<25k1
<50k1
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k184
<2k5
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Products (85): Balsa (1), Batalla Naval (1), Control Center (2), Dia (1), Display Manager (7), Dwarf HTTP Server (2), EOG (1), Ekiga (1), Epiphany (7), Evince (2), Evolution (16), Evolution Data Server (1), GConf (1), GDM (3), GIMP (2), GLib (5), GMIME (1), GTK (1), Geary (1), Glade (1), GnoRPM (1), Gnome-Lokkit (1), Gnome-shell (1), Gnome Online Accounts (1), Gnome Screensaver (1), Gnumeric (3), GtkHTML (1), Keyring (2), Libgtop Daemon (1), Librsvg (1), Maps (1), Nautilus (3), NetworkManager (7), OCRFeeder (1), Power Manager (2), Rhythmbox (2), Screensaver (1), Seahorse (1), Shell (3), Structured File Library (1), Time Tracker (1), Update-manager-core (1), Web (5), anjuta (1), at-spi2-atk (1), balsa (1), empathy (2), eog (1), esound (1), evolution-data-server (4), evolution-rss (1), file-roller (3), gThumb (2), gcab (1), gdk-pixbuf (7), gdm (3), gedit (3), glib (13), glib-networking (1), gnome-autoar (2), gnome-desktop (1), gnome-keyring (1), gnome-shell (5), grilo (1), gtkhtml (1), gvdb (1), gvfs (4), ifcfg-rh plug-in (1), inagre (1), libgda (1), libgda2 (1), libgdata (1), libgfbgraph (1), libgrss (1), libgtop Daemon (1), librsvg (4), libsoup (3), libxml2 (1), libzapojit (1), libzvt2 (1), nautilus-python (1), pango (1), screensaver (8), tomboy (1), yelp (1)

Link to Vendor Website: https://www.gnome.org/

OpublikowanoBaseTempSłaby punktProdWykPrzEPSSCTICVE
2024-02-193.53.4GNOME Glade GladeGtkBox glade-gtk-box.c denial of serviceNieznanyNot DefinedOfficial Fix0.000430.02CVE-2020-36774
2024-01-265.55.5GNOME gdk-pixbuf gdk_pixbuf_io_init_modules memory corruptionNieznanyNot DefinedNot Defined0.000000.02CVE-2023-45926
2024-01-263.53.4GNOME GTK XIQueryDevice denial of serviceNieznanyNot DefinedNot Defined0.000000.04CVE-2023-45923
2024-01-265.65.6GNOME gdk-pixbuf ANI Decoder io-ani.c gdk_pixbuf_set_option memory corruptionNieznanyNot DefinedNot Defined0.000580.04CVE-2022-48622
2023-09-225.55.3GNOME Maps service.json privilege escalationNieznanyNot DefinedOfficial Fix0.000000.00CVE-2023-43091
2023-09-154.54.4GNOME Shell Screenshot Tool information disclosureNieznanyNot DefinedOfficial Fix0.000420.00CVE-2023-43090
2023-09-146.56.4GNOME Time Tracker privilege escalationNieznanyNot DefinedNot Defined0.000550.03CVE-2023-36250
2023-06-023.53.5GNOME glib fuzz_variant_text denial of serviceNieznanyNot DefinedNot Defined0.000560.04CVE-2023-32636
2023-06-025.55.5GNOME glib fuzz_variant_binary_byteswap memory corruptionNieznanyNot DefinedNot Defined0.000560.00CVE-2023-32643
2023-06-023.53.5GNOME glib g_variant_byteswap denial of serviceNieznanyNot DefinedNot Defined0.000480.00CVE-2023-32611
2023-06-025.55.5GNOME glib GVariant is_normal Privilege EscalationNieznanyNot DefinedNot Defined0.001030.02CVE-2023-29499
2023-06-025.55.5GNOME glib GVariant privilege escalationNieznanyNot DefinedNot Defined0.000460.00CVE-2023-32665
2023-04-265.04.8GNOME Control Center Network Service privilege escalationNieznanyNot DefinedOfficial Fix0.000000.03CVE-2022-1736
2023-04-215.65.5GNOME Evolution/Evolution Data Server camel-gpg-context.c gpg_ctx_add_recipient information disclosureNieznanyNot DefinedOfficial Fix0.003750.00CVE-2013-4166
2023-02-205.54.8GNOME Epiphany Web Contents privilege escalationNieznanyProof-of-ConceptOfficial Fix0.001460.00CVE-2023-26081
2022-12-267.17.0GNOME gvdb gvdb-builder.c gvdb_table_write_contents_async memory corruptionNieznanyNot DefinedOfficial Fix0.001480.12CVE-2019-25085
2022-11-144.54.4GNOME Nautilus ZIP Archive get_basename denial of serviceNieznanyNot DefinedOfficial Fix0.000440.00CVE-2022-37290
2022-08-265.55.5GNOME anjuta libxml2 API anjuta-bookmarks.c xmlGetProp information disclosureNieznanyNot DefinedNot Defined0.001500.02CVE-2021-42522
2022-07-257.06.9GNOME gdk-pixbuf GIF File io-gif-animation.c composite_frame memory corruptionNieznanyNot DefinedOfficial Fix0.001410.00CVE-2021-46829
2022-06-254.94.9GNOME GIMP XCF File gimp_layer_invalidate_boundary denial of serviceImage Processing SoftwareNot DefinedNot Defined0.000510.00CVE-2022-32990
2022-05-184.34.3GNOME GIMP XCF File memory corruptionImage Processing SoftwareNot DefinedNot Defined0.000540.02CVE-2022-30067
2022-04-306.36.3GNOME gnome-shell CAP_SYS_NICE privilege escalationNieznanyNot DefinedNot Defined0.000440.00CVE-2021-3982
2022-04-216.36.0GNOME Epiphany HTML Document ephy_string_shorten memory corruptionNieznanyNot DefinedOfficial Fix0.002890.00CVE-2022-29536
2022-03-245.55.3GNOME OCRFeeder Filename privilege escalationNieznanyNot DefinedOfficial Fix0.003690.00CVE-2022-27811
2022-01-125.55.5GNOME gdk-pixbuf GIF File memory corruptionNieznanyNot DefinedNot Defined0.008520.00CVE-2021-44648

164 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 164 results.

PoprzedniPrzeglądKolejny

Do you want to use VulDB in your project?

Use the official API to access entries easily!