Vulnerabilities > Fedoraproject > Fedora > 31

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-21	CVE-2020-14954	Injection vulnerability in multiple products Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. network high complexity mutt debian neomutt fedoraproject canonical opensuse CWE-74	5.9
2020-06-19	CVE-2020-14929	Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do. network low complexity alpine-project fedoraproject debian	7.5
2020-06-18	CVE-2020-13882	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. local high complexity cisofy fedoraproject CWE-367	4.2
2020-06-18	CVE-2019-13033	Information Exposure vulnerability in multiple products In CISOfy Lynis 2.x through 2.7.5, the license key can be obtained by looking at the process list when a data upload is being performed. local low complexity cisofy debian fedoraproject CWE-200	3.3
2020-06-18	CVE-2017-9104	Resource Exhaustion vulnerability in multiple products An issue was discovered in adns before 1.5.2. network low complexity gnu opensuse fedoraproject CWE-400 critical	9.8
2020-06-18	CVE-2017-9103	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in adns before 1.5.2. network low complexity gnu opensuse fedoraproject CWE-119 critical	9.8
2020-06-18	CVE-2020-14422	Use of Insufficiently Random Values vulnerability in multiple products Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. network high complexity opensuse python fedoraproject oracle CWE-330	5.9
2020-06-18	CVE-2017-9109	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in adns before 1.5.2. network low complexity gnu opensuse fedoraproject CWE-119 critical	9.8
2020-06-18	CVE-2017-9108	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in adns before 1.5.2. network low complexity gnu opensuse fedoraproject CWE-119	7.5
2020-06-18	CVE-2017-9107	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in adns before 1.5.2. network low complexity gnu fedoraproject CWE-119	7.5