Vulnerabilities > Fedoraproject > Fedora > 35

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-06	CVE-2022-26496	Out-of-bounds Write vulnerability in multiple products In nbd-server in nbd before 3.24, there is a stack-based buffer overflow. network low complexity network-block-device-project debian fedoraproject CWE-787 critical	9.8
2022-03-06	CVE-2022-26490	Classic Buffer Overflow vulnerability in multiple products st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. local low complexity linux fedoraproject netapp debian CWE-120	7.8
2022-03-04	CVE-2021-23214	When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption. network high complexity postgresql fedoraproject redhat	8.1
2022-03-04	CVE-2021-3744	A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). local low complexity linux fedoraproject debian redhat oracle	5.5
2022-03-03	CVE-2022-0730	Under certain ldap conditions, Cacti authentication can be bypassed with certain credential types. network low complexity cacti debian fedoraproject critical	9.8
2022-03-03	CVE-2021-4002	Memory Leak vulnerability in multiple products A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. local low complexity linux debian fedoraproject oracle CWE-401	4.4
2022-03-03	CVE-2022-21716	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Twisted is an event-based framework for internet applications, supporting Python 3.6+. network low complexity twisted debian oracle fedoraproject CWE-770	7.5
2022-03-03	CVE-2022-24724	cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. network low complexity github fedoraproject critical	9.8
2022-03-03	CVE-2022-0492	Missing Authorization vulnerability in multiple products A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. local low complexity linux debian redhat canonical fedoraproject netapp CWE-862	7.8
2022-03-03	CVE-2022-26126	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero-terminated binary string in isis_nb_notifications.c. local low complexity frrouting fedoraproject CWE-119	7.8