Vulnerabilities > Fedoraproject > Fedora > 39

DATE CVE VULNERABILITY TITLE RISK
2023-06-27 CVE-2023-3431 Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.
network
low complexity
plantuml fedoraproject
5.3
5.3
2023-06-27 CVE-2023-3432 Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
network
low complexity
plantuml fedoraproject
critical
 10.0
10
2023-06-13 CVE-2023-20867 A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
local
high complexity
vmware debian fedoraproject
3.9
3.9
2023-05-09 CVE-2023-31489 An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function.
local
low complexity
frrouting fedoraproject
5.5
5.5
2023-05-09 CVE-2023-31490 An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function.
network
low complexity
frrouting debian fedoraproject
7.5
7.5
2023-04-19 CVE-2023-27043 Improper Input Validation vulnerability in multiple products
The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character.
network
low complexity
fedoraproject netapp python CWE-20
5.3
5.3
2023-04-12 CVE-2023-0004 A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of PAN-OS software.
network
low complexity
paloaltonetworks fedoraproject
6.5
6.5
2023-03-22 CVE-2023-28439 Cross-site Scripting vulnerability in multiple products
CKEditor4 is an open source what-you-see-is-what-you-get HTML editor.
network
low complexity
ckeditor fedoraproject CWE-79
6.1
6.1
2023-02-08 CVE-2023-0003 Externally Controlled Reference to a Resource in Another Sphere vulnerability in multiple products
A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an authenticated user with access to the web interface to read local files from the server.
network
low complexity
paloaltonetworks fedoraproject CWE-610
6.5
6.5
2022-03-25 CVE-2022-22995 Link Following vulnerability in multiple products
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files.
network
low complexity
westerndigital fedoraproject netatalk CWE-59
critical
 9.8
9.8