Vulnerabilities > Fedoraproject > Fedora > 33

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-26	CVE-2021-41183	jQuery-UI is the official jQuery user interface library. network low complexity jqueryui fedoraproject netapp debian drupal oracle tenable	6.1
2021-10-26	CVE-2021-41184	jQuery-UI is the official jQuery user interface library. network low complexity jqueryui fedoraproject netapp drupal tenable oracle	6.1
2021-10-25	CVE-2021-21703	Out-of-bounds Write vulnerability in multiple products In PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the main process and write to it, modifying it in a way that would cause the root process to conduct invalid memory reads and writes, which can be used to escalate privileges from local unprivileged user to the root user. local high complexity php debian fedoraproject netapp oracle CWE-787	7.0
2021-10-21	CVE-2021-41160	Out-of-bounds Write vulnerability in multiple products FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. network low complexity freerdp fedoraproject CWE-787	8.8
2021-10-21	CVE-2021-42715	Infinite Loop vulnerability in multiple products An issue was discovered in stb stb_image.h 1.33 through 2.27. local low complexity nothings fedoraproject debian CWE-835	5.5
2021-10-21	CVE-2021-42716	Classic Buffer Overflow vulnerability in multiple products An issue was discovered in stb stb_image.h 2.27. local low complexity nothings fedoraproject CWE-120	7.1
2021-10-20	CVE-2021-42762	BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. local low complexity webkitgtk wpewebkit fedoraproject debian	5.3
2021-10-20	CVE-2021-35604	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle netapp fedoraproject mariadb	5.5
2021-10-20	CVE-2021-42739	Out-of-bounds Write vulnerability in multiple products The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking. local low complexity linux fedoraproject debian starwindsoftware oracle CWE-787	6.7
2021-10-19	CVE-2021-30846	Out-of-bounds Write vulnerability in multiple products A memory corruption issue was addressed with improved memory handling. local low complexity apple debian fedoraproject CWE-787	7.8