Vulnerabilities > Gnome > Evolution > Low

DATE CVE VULNERABILITY TITLE RISK
2021-02-01 CVE-2021-3349 Insufficient Verification of Data Authenticity vulnerability in Gnome Evolution
GNOME Evolution through 3.38.3 produces a "Valid signature" message for an unknown identifier on a previously trusted key because Evolution does not retrieve enough information from the GnuPG API.
local
low complexity
gnome CWE-345
3.3
2009-05-14 CVE-2009-1631 Permissions, Privileges, and Access Controls vulnerability in Gnome Evolution
The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories and files under .evolution/ related to local mail, which allows local users to obtain sensitive information by reading these files.
local
low complexity
gnome CWE-264
2.1
2006-06-02 CVE-2006-2789 Denial Of Service vulnerability in GNOME Evolution Email Attachment
Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote attackers to cause a denial of service (persistent crash) via a crafted "From" header that triggers an assert error in camel-internet-address.c when a null pointer is used.
network
high complexity
gnome
2.6