Vulnerabilities > Fedoraproject > Fedora

DATE CVE VULNERABILITY TITLE RISK
2022-05-31 CVE-2022-1942 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject apple debian
7.8
7.8
2022-05-29 CVE-2022-1927 Buffer Over-read in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject apple
7.8
7.8
2022-05-27 CVE-2022-1897 Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject apple debian
7.8
7.8
2022-05-27 CVE-2022-1898 Use After Free in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject debian apple
7.8
7.8
2022-05-26 CVE-2022-22662 A cookie management issue was addressed with improved state management.
network
low complexity
apple fedoraproject
6.5
6.5
2022-05-26 CVE-2022-26691 Incorrect Comparison vulnerability in multiple products
A logic issue was addressed with improved state management. 		6.7
6.7
2022-05-26 CVE-2022-30783 Unchecked Return Value vulnerability in multiple products
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
local
low complexity
tuxera fedoraproject debian CWE-252
6.7
6.7
2022-05-26 CVE-2022-30784 Classic Buffer Overflow vulnerability in multiple products
A crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through 2021.8.22.
local
low complexity
tuxera debian fedoraproject CWE-120
7.8
7.8
2022-05-26 CVE-2022-30785 A file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations in NTFS-3G through 2021.8.22 when using libfuse-lite.
local
low complexity
tuxera fedoraproject debian
6.7
6.7
2022-05-26 CVE-2022-30786 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.
local
low complexity
tuxera fedoraproject debian CWE-787
7.8
7.8