Known Vulnerabilities for Evolution by Gnome
Listed below are 10 of the newest known vulnerabilities associated with "Evolution" by "Gnome".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-3349 | ** DISPUTED ** GNOME Evolution through 3.38.3 produces a "Valid signature" message for an unknown identifier on a previously ... | 3.3 - LOW | 2021-02-01 | 2023-11-07 |
| CVE-2020-11879 | An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary (non-RFC6068) "mailto?attach=..." paramet... | 6.5 - MEDIUM | 2020-04-17 | 2020-09-04 |
| CVE-2018-15587 | GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted ... | 6.5 - MEDIUM | 2019-02-11 | 2019-06-10 |
| CVE-2018-12422 | ** DISPUTED ** addressbook/backends/ldap/e-book-backend-ldap.c in Evolution-Data-Server in GNOME Evolution through 3.29.2 mig... | 9.8 - CRITICAL | 2018-06-15 | 2023-11-07 |
| CVE-2017-17689 | The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintex... | 5.9 - MEDIUM | 2018-05-16 | 2019-10-03 |
| CVE-2016-10727 | camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with ... | 9.8 - CRITICAL | 2018-07-20 | 2018-09-18 |
| CVE-2013-4166 | The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Serve... | 7.5 - HIGH | 2020-02-06 | 2023-02-13 |
| CVE-2011-3201 | GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a ... | 4.3 - MEDIUM | 2013-03-08 | 2023-02-13 |
| CVE-2009-2404 | Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used i... | 9.3 - HIGH | 2009-08-03 | 2018-10-03 |
| CVE-2009-1631 | The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certai... | 2.1 - LOW | 2009-05-14 | 2009-05-23 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gnome | Evolution | 3.9.92 | All | All | All |
| Application | Gnome | Evolution | 3.9.91 | All | All | All |
| Application | Gnome | Evolution | 3.9.90 | All | All | All |
| Application | Gnome | Evolution | 3.9.5 | All | All | All |
| Application | Gnome | Evolution | 3.9.4 | All | All | All |
| Application | Gnome | Evolution | 3.9.3 | All | All | All |
| Application | Gnome | Evolution | 3.9.2 | All | All | All |
| Application | Gnome | Evolution | 3.9.1 | All | All | All |
| Application | Gnome | Evolution | 3.8.5 | All | All | All |
| Application | Gnome | Evolution | 3.8.4 | All | All | All |
| Application | Gnome | Evolution | 3.8.3 | All | All | All |
| Application | Gnome | Evolution | 3.8.2 | All | All | All |
| Application | Gnome | Evolution | 3.8.1 | All | All | All |
| Application | Gnome | Evolution | 3.8.0 | All | All | All |
| Application | Gnome | Evolution | 3.7.92 | All | All | All |
| Application | Gnome | Evolution | 3.7.91 | All | All | All |
| Application | Gnome | Evolution | 3.7.90 | All | All | All |
| Application | Gnome | Evolution | 3.7.5 | All | All | All |
| Application | Gnome | Evolution | 3.7.4 | All | All | All |
| Application | Gnome | Evolution | 3.7.3 | All | All | All |