SecAlerts
CVE ListPricingSign Up
gnome logo

gnome

Security Risk Profile

30
/100
low

Security Risk Score

Comprehensive risk assessment based on 577 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from September 23, 1999 to present

577
Total CVEs
208
Critical+High
0
Exploited
77
Unpatched

Threat Assessment

Avg CVSS
5.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
77
Critical/High
Risk Level
30/100
low
🆕 9Fresh (<7d)📈 10 in Last 30 Days

Severity Distribution

Critical
37
High
171
Medium
260
Low
72

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
54

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
96
2
Integer Overflow
51
3
Null Pointer Dereference
27
4
Input Validation
25
5
Use After Free
20

Most Affected Products

1. GTK Gtk\+580
2. Gnome GLib322
3. Gnome empathy269
4. Sun OpenSolaris216
5. Gnome gdm160

Recent Vulnerabilities

See more →
https://seclists.org/oss-sec/2026/q2/668
unknown

Evince/Atril/Xader command injection CVE-2026-46529

5/22/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/643
unknown

Evince/Atril/Xader command injection CVE-2026-46529

5/21/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/632
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/20/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/627
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/20/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/621
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/20/2026🔧 No Patch
CVE-2026-46529
unknown

Evince/Atril/Xader command injection CVE-2026-46529

5/19/2026
https://seclists.org/oss-sec/2026/q2/606
unknown

Evince/Atril/Xader command injection CVE-2026-46529

5/19/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/573
unknown

On the issue of MIME handlers that execute arbitrary code (e.g. Wine)

5/19/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/320
unknown

10+ CVEs in GStamer

5/1/2026🔧 No Patch
CVE-2026-6732
CVSS 7.5EPSS 0%high

Libxml2: libxml2: denial of service via crafted xsd-validated document

4/23/2026🔧 No Patch

Monitor gnome in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.