Vulnerabilities > Fedoraproject > Fedora > 33

DATE	CVE	VULNERABILITY TITLE	RISK
2020-05-19	CVE-2020-1695	A flaw was found in all resteasy 3.x.x versions prior to 3.12.0.Final and all resteasy 4.x.x versions prior to 4.6.0.Final, where an improper input validation results in returning an illegal header that integrates into the server's response. network low complexity redhat fedoraproject	7.5
2020-05-12	CVE-2020-8151	Incorrect Authorization vulnerability in multiple products There is a possible information disclosure issue in Active Resource <v5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak information. network low complexity rubyonrails fedoraproject CWE-863	7.5
2020-04-29	CVE-2020-11022	In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. network low complexity jquery drupal debian fedoraproject oracle netapp opensuse tenable	6.1
2020-04-29	CVE-2020-11023	Cross-site Scripting vulnerability in multiple products In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. network low complexity jquery debian fedoraproject drupal oracle netapp tenable CWE-79	6.1
2020-04-27	CVE-2020-12272	Authentication Bypass by Spoofing vulnerability in multiple products OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail message. network low complexity trusteddomain fedoraproject CWE-290	5.3
2020-04-27	CVE-2019-20790	Authentication Bypass by Spoofing vulnerability in multiple products OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO field is inconsistent with the MAIL FROM field. network low complexity trusteddomain pypolicyd-spf-project fedoraproject CWE-290 critical	9.8
2020-04-15	CVE-2020-2934	Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). network high complexity oracle fedoraproject debian	5.0
2020-04-15	CVE-2020-2933	Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). network high complexity oracle fedoraproject debian	2.2
2020-04-15	CVE-2020-2875	Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). network high complexity oracle fedoraproject debian	4.7
2020-04-07	CVE-2020-11612	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. network low complexity netty debian fedoraproject netapp oracle CWE-770	7.5