VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> 36
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-05-26
CVE-2022-30789
Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array in NTFS-3G through 2021.8.22.
local
low complexity
tuxera
debian
fedoraproject
CWE-787
7.8
7.8
2022-05-25
CVE-2022-1348
Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
A vulnerability was found in logrotate in how the state file is created.
network
low complexity
logrotate-project
fedoraproject
CWE-732
6.5
6.5
2022-05-25
CVE-2022-1851
Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim
fedoraproject
debian
apple
7.8
7.8
2022-05-24
CVE-2022-29217
PyJWT is a Python implementation of RFC 7519.
network
low complexity
pyjwt-project
fedoraproject
7.5
7.5
2022-05-24
CVE-2022-29221
Smarty is a template engine for PHP, facilitating the separation of presentation (HTML/CSS) from application logic.
network
low complexity
smarty
debian
fedoraproject
8.8
8.8
2022-05-18
CVE-2022-30597
A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field.
network
low complexity
moodle
redhat
fedoraproject
5.3
5.3
2022-05-18
CVE-2022-30598
A flaw was found in moodle where global search results could include author information on some activities where a user may not otherwise have access to it.
network
low complexity
moodle
redhat
fedoraproject
4.3
4.3
2022-05-18
CVE-2022-30599
SQL Injection vulnerability in multiple products
A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.
network
low complexity
moodle
redhat
fedoraproject
CWE-89
critical
9.8
9.8
2022-05-18
CVE-2022-30600
Incorrect Calculation vulnerability in multiple products
A flaw was found in moodle where logic used to count failed login attempts could result in the account lockout threshold being bypassed.
network
low complexity
moodle
redhat
fedoraproject
CWE-682
critical
9.8
9.8
2022-05-18
CVE-2022-30596
Cross-site Scripting vulnerability in multiple products
A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk.
network
low complexity
moodle
redhat
fedoraproject
CWE-79
5.4
5.4
«
Previous
1
2
...
42
43
44
(current)
45
46
...
67
68
»
Next