Gnome Shotwell vulnerabilities
2 known vulnerabilities affecting gnome/shotwell.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1LOW1
Vulnerabilities
Page 1 of 1
CVE-2017-1000024HIGHCVSS 7.5≥ 0.24.0, ≤ 0.24.4≥ 0.25.0, ≤ 0.25.32017-07-17
CVE-2017-1000024 [HIGH] CWE-319 CVE-2017-1000024: Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure
Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission
nvdosv
CVE-2016-1000033LOWCVSS 3.7v0.22.02016-10-25
CVE-2016-1000033 [LOW] CWE-295 CVE-2016-1000033: Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification valid
Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks.
nvdosv