Skip to main content

Gvfs

5 CVEs product

Monthly

CVE-2019-12795 HIGH PATCH This Week

daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Gvfs
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2019-12449 MEDIUM PATCH This Month

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Gvfs Ubuntu Linux Fedora Leap
NVD
CVSS 3.1
5.7
EPSS
1.8%
CVE-2019-12448 HIGH This Week

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Race Condition Information Disclosure Gvfs
NVD
CVSS 3.0
8.1
EPSS
1.7%
CVE-2019-12447 HIGH PATCH This Week

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Gvfs Ubuntu Linux Fedora Leap
NVD
CVSS 3.1
7.3
EPSS
1.8%
CVE-2019-3827 HIGH PATCH This Week

An incorrect permission check in the admin backend in gvfs before version 1.39.4 was found that allows reading and modify arbitrary files by privileged users without asking for password when no. Rated high severity (CVSS 7.0). This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Gvfs
NVD
CVSS 3.1
7.0
EPSS
0.4%
EPSS 0% CVSS 7.8
HIGH PATCH This Week

daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Gvfs
NVD
EPSS 2% CVSS 5.7
MEDIUM PATCH This Month

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Gvfs Ubuntu Linux +2
NVD
EPSS 2% CVSS 8.1
HIGH This Week

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Race Condition Information Disclosure Gvfs
NVD
EPSS 2% CVSS 7.3
HIGH PATCH This Week

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Gvfs Ubuntu Linux +2
NVD
EPSS 0% CVSS 7.0
HIGH PATCH This Week

An incorrect permission check in the admin backend in gvfs before version 1.39.4 was found that allows reading and modify arbitrary files by privileged users without asking for password when no. Rated high severity (CVSS 7.0). This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Gvfs
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy