Skip to main content

Libgfbgraph

1 CVEs product

Monthly

CVE-2021-39358 MEDIUM This Month

In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Libgfbgraph Fedora
NVD
CVSS 3.1
5.9
EPSS
0.7%
EPSS 1% CVSS 5.9
MEDIUM This Month

In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Libgfbgraph Fedora
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy