Vulnerabilities > Fedoraproject > Fedora > 31

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-13	CVE-2019-12922	Cross-Site Request Forgery (CSRF) vulnerability in multiple products A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page. network low complexity phpmyadmin fedoraproject CWE-352	6.5
2019-09-11	CVE-2019-16237	Origin Validation Error vulnerability in multiple products Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala. network low complexity dino canonical fedoraproject debian CWE-346	7.5
2019-09-11	CVE-2019-16236	Missing Authorization vulnerability in multiple products Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala. network low complexity dino canonical fedoraproject debian CWE-862	7.5
2019-09-11	CVE-2019-16235	Origin Validation Error vulnerability in multiple products Dino before 2019-09-10 does not properly check the source of a carbons message in module/xep/0280_message_carbons.vala. network low complexity dino canonical fedoraproject debian CWE-346	7.5
2019-09-11	CVE-2019-16232	NULL Pointer Dereference vulnerability in multiple products drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. local high complexity linux canonical opensuse fedoraproject CWE-476	4.1
2019-09-09	CVE-2019-16167	Integer Overflow or Wraparound vulnerability in multiple products sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c. local low complexity sysstat-project fedoraproject opensuse canonical debian CWE-190	5.5
2019-09-08	CVE-2016-10937	Improper Certificate Validation vulnerability in multiple products IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate. network low complexity imapfilter-project debian fedoraproject opensuse CWE-295	7.5
2019-09-06	CVE-2019-16056	An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. network low complexity python fedoraproject debian canonical redhat oracle opensuse	7.5
2019-09-06	CVE-2019-14813	Incorrect Authorization vulnerability in multiple products A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. network low complexity artifex redhat fedoraproject opensuse debian CWE-863 critical	9.8
2019-09-05	CVE-2019-15946	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c. high complexity opensc-project debian fedoraproject CWE-119	6.4