Every CVE whose affected-product data names Gnome Balsa, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-16118 — CVSS 7.5 (high): In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by…
CVE-2007-5007 — CVSS 6.8 (medium): Stack-based buffer overflow in the ir_fetch_seq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code…
CVE-2020-13645 — CVSS 6.5 (medium): In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS…