Every CVE whose affected-product data names Gnome Libgxps, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2017-11590 — CVSS 7.5 (high): There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote…
CVE-2018-10733 — CVSS 6.5 (medium): There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will…
CVE-2018-10767 — CVSS 6.5 (medium): There is a stack-based buffer over-read in calling GLib in the function gxps_images_guess_content_type of gxps-images.c in libgxps through…