VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Fedora
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-08-10
CVE-2021-33645
Memory Leak vulnerability in multiple products
The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak.
network
low complexity
feep
huawei
fedoraproject
CWE-401
7.5
7.5
2022-08-10
CVE-2021-33646
Memory Leak vulnerability in multiple products
The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.
network
low complexity
feep
huawei
fedoraproject
CWE-401
7.5
7.5
2022-08-10
CVE-2022-28131
Uncontrolled Recursion vulnerability in multiple products
Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.
network
low complexity
golang
fedoraproject
netapp
CWE-674
7.5
7.5
2022-08-10
CVE-2022-2719
Reachable Assertion vulnerability in multiple products
In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list.
local
low complexity
fedoraproject
imagemagick
CWE-617
5.5
5.5
2022-08-10
CVE-2021-37150
Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources.
network
low complexity
apache
debian
fedoraproject
7.5
7.5
2022-08-10
CVE-2022-25763
Improper Input Validation vulnerability in HTTP/2 request validation of Apache Traffic Server allows an attacker to create smuggle or cache poison attacks.
network
low complexity
apache
debian
fedoraproject
7.5
7.5
2022-08-10
CVE-2022-28129
Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers.
network
low complexity
apache
debian
fedoraproject
7.5
7.5
2022-08-10
CVE-2022-31779
Improper Input Validation vulnerability in HTTP/2 header parsing of Apache Traffic Server allows an attacker to smuggle requests.
network
low complexity
apache
debian
fedoraproject
7.5
7.5
2022-08-10
CVE-2022-31780
Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests.
network
low complexity
apache
debian
fedoraproject
7.5
7.5
2022-08-06
CVE-2022-37451
Release of Invalid Pointer or Reference vulnerability in multiple products
Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.
network
low complexity
exim
fedoraproject
CWE-763
7.5
7.5
«
Previous
1
2
...
102
103
104
(current)
105
106
...
460
461
»
Next