VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> 32
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-04-05
CVE-2021-20307
Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values.
network
low complexity
libpano13-project
fedoraproject
debian
critical
9.8
9.8
2021-04-02
CVE-2021-1870
A logic issue was addressed with improved restrictions.
network
low complexity
apple
webkitgtk
fedoraproject
critical
9.8
9.8
2021-04-02
CVE-2021-1801
This issue was addressed with improved iframe sandbox enforcement.
network
low complexity
apple
fedoraproject
webkitgtk
6.5
6.5
2021-04-02
CVE-2021-1799
A port redirection issue was addressed with additional port validation.
network
low complexity
apple
fedoraproject
webkitgtk
6.5
6.5
2021-04-02
CVE-2021-1789
Type Confusion vulnerability in multiple products
A type confusion issue was addressed with improved state handling.
network
low complexity
apple
fedoraproject
webkitgtk
CWE-843
8.8
8.8
2021-04-02
CVE-2021-1765
This issue was addressed with improved iframe sandbox enforcement.
network
low complexity
apple
fedoraproject
webkitgtk
6.5
6.5
2021-04-02
CVE-2020-29623
"Clear History and Website Data" did not clear the history.
local
low complexity
apple
fedoraproject
webkitgtk
3.3
3.3
2021-04-01
CVE-2021-29421
XXE vulnerability in multiple products
models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries.
network
low complexity
pikepdf-project
fedoraproject
CWE-611
7.5
7.5
2021-04-01
CVE-2021-3447
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode.
local
low complexity
redhat
fedoraproject
5.5
5.5
2021-04-01
CVE-2021-22890
Authentication Bypass by Spoofing vulnerability in multiple products
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets.
network
high complexity
haxx
fedoraproject
netapp
broadcom
debian
siemens
oracle
splunk
CWE-290
3.7
3.7
«
Previous
1
2
...
7
8
9
(current)
10
11
...
90
91
»
Next