Lucene search

K
GnomeEvolution

5 matches found

CVE
CVE
added 2020/02/06 3:15 p.m.77 views

CVE-2013-4166

The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and earlier does not properly select the GPG key to use for email encryption, which might cause the email to be encrypted with the wrong key and allow remote attacker...

7.5CVSS7.2AI score0.01005EPSS
CVE
CVE
added 2005/08/12 4:0 a.m.62 views

CVE-2005-2549

Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers.

7.5CVSS7.6AI score0.02934EPSS
CVE
CVE
added 2021/05/26 10:15 p.m.59 views

CVE-2009-3721

Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in Evolution's TNEF parser that is derived from yTNEF. A crafted email could cause these applications to write data in arbitrary locations on the filesystem, crash, or potentially execute arbitrary code w...

7.8CVSS8.2AI score0.00781EPSS
CVE
CVE
added 2008/06/04 8:32 p.m.47 views

CVE-2008-1108

Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment.

7.6CVSS7.4AI score0.04236EPSS
CVE
CVE
added 2005/08/12 4:0 a.m.44 views

CVE-2005-2550

Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab.

7.5CVSS7.4AI score0.05157EPSS