Vulnerabilities > Fedoraproject > Fedora > 34
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-18 | CVE-2022-30596 | Cross-site Scripting vulnerability in multiple products A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk. | 5.4 |
| 2022-05-17 | CVE-2022-29162 | Incorrect Default Permissions vulnerability in multiple products runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. | 7.8 |
| 2022-05-17 | CVE-2022-1706 | Incorrect Authorization vulnerability in multiple products A vulnerability was found in Ignition where ignition configs are accessible from unprivileged containers in VMs running on VMware products. | 6.5 |
| 2022-05-17 | CVE-2022-1733 | Heap-based Buffer Overflow vulnerability in multiple products Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968. | 7.8 |
| 2022-05-17 | CVE-2022-1769 | Buffer Over-read vulnerability in multiple products Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. | 7.8 |
| 2022-05-12 | CVE-2022-28919 | Cross-site Scripting vulnerability in multiple products HTMLCreator release_stable_2020-07-29 was discovered to contain a cross-site scripting (XSS) vulnerability via the function _generateFilename. | 6.1 |
| 2022-05-12 | CVE-2022-1674 | NULL Pointer Dereference vulnerability in multiple products NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. | 5.5 |
| 2022-05-10 | CVE-2022-23267 | .NET and Visual Studio Denial of Service Vulnerability | 7.5 |
| 2022-05-10 | CVE-2022-29117 | .NET and Visual Studio Denial of Service Vulnerability | 7.5 |
| 2022-05-10 | CVE-2022-29145 | .NET and Visual Studio Denial of Service Vulnerability | 7.5 |