Vulnerabilities > Fedoraproject > Fedora > 39

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-20	CVE-2024-2625	Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. network low complexity google fedoraproject	8.8
2024-03-20	CVE-2024-2626	Out-of-bounds Read vulnerability in multiple products Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. network low complexity google fedoraproject CWE-125	6.5
2024-03-20	CVE-2024-2627	Use After Free vulnerability in multiple products Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2024-03-20	CVE-2024-2628	Inappropriate implementation in Downloads in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted URL. network low complexity google fedoraproject	4.3
2024-03-20	CVE-2024-2629	Incorrect security UI in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. network low complexity google fedoraproject	4.3
2024-03-20	CVE-2024-2630	Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google fedoraproject	6.5
2024-03-20	CVE-2024-2631	Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. network low complexity google fedoraproject	4.3
2024-02-29	CVE-2024-24246	Out-of-bounds Write vulnerability in multiple products Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h. local low complexity qpdf-project fedoraproject CWE-787	5.5
2024-02-22	CVE-2023-52160	Improper Authentication vulnerability in multiple products The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. network low complexity w1-fi debian redhat fedoraproject CWE-287	6.5
2024-02-14	CVE-2023-50387	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. network low complexity redhat microsoft fedoraproject thekelleys nic powerdns isc nlnetlabs CWE-770	7.5