VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> 36
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-11-17
CVE-2021-41164
CKEditor4 is an open source WYSIWYG HTML editor.
network
low complexity
ckeditor
drupal
oracle
fedoraproject
5.4
5.4
2021-11-05
CVE-2021-35368
OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname.
network
low complexity
owasp
fedoraproject
debian
critical
9.8
9.8
2021-10-26
CVE-2021-41182
jQuery-UI is the official jQuery user interface library.
network
low complexity
jqueryui
fedoraproject
netapp
debian
drupal
oracle
tenable
6.1
6.1
2021-10-26
CVE-2021-41183
jQuery-UI is the official jQuery user interface library.
network
low complexity
jqueryui
fedoraproject
netapp
debian
drupal
oracle
tenable
6.1
6.1
2021-10-26
CVE-2021-41184
jQuery-UI is the official jQuery user interface library.
network
low complexity
jqueryui
fedoraproject
netapp
drupal
tenable
oracle
6.1
6.1
2021-09-08
CVE-2021-21897
A code execution vulnerability exists in the DL_Dxf::handleLWPolylineData functionality of Ribbonsoft dxflib 3.17.0.
network
low complexity
ribbonsoft
fedoraproject
debian
8.8
8.8
2021-09-03
CVE-2021-39191
mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider.
network
low complexity
openidc
fedoraproject
debian
6.1
6.1
2021-08-24
CVE-2021-38714
Integer Overflow or Wraparound vulnerability in multiple products
In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution.
network
low complexity
plib-project
debian
fedoraproject
CWE-190
8.8
8.8
2021-08-12
CVE-2021-38593
Out-of-bounds Write vulnerability in multiple products
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).
network
low complexity
qt
fedoraproject
CWE-787
7.5
7.5
2021-08-07
CVE-2021-29923
Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation.
network
low complexity
golang
oracle
fedoraproject
7.5
7.5
«
Previous
1
2
...
64
65
66
(current)
67
68
»
Next