VYPR
Unrated severityNVD Advisory· Published Apr 2, 2013· Updated Jun 16, 2026

CVE-2013-0240

CVE-2013-0240

Description

Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13
  • cpe:2.3:a:gnome:gnome_online_accounts:3.4.0:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:gnome:gnome_online_accounts:3.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gnome_online_accounts:3.7.4:*:*:*:*:*:*:*
    • (no CPE)range: >=3.4, <=3.6.3; >=3.7, <3.7.5
  • cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.