Vulnerabilities > Fedoraproject > Fedora

DATE CVE VULNERABILITY TITLE RISK
2022-05-17 CVE-2022-1733 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968.
local
low complexity
vim fedoraproject apple
7.8
7.8
2022-05-17 CVE-2022-1769 Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.
local
low complexity
vim fedoraproject apple
7.8
7.8
2022-05-16 CVE-2022-1586 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file.
network
low complexity
pcre fedoraproject redhat netapp debian CWE-125
critical
 9.1
9.1
2022-05-16 CVE-2022-1587 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file.
network
low complexity
pcre redhat fedoraproject netapp CWE-125
critical
 9.1
9.1
2022-05-16 CVE-2022-30767 Classic Buffer Overflow vulnerability in multiple products
nfs_lookup_reply in net/nfs.c in Das U-Boot through 2022.04 (and through 2022.07-rc2) has an unbounded memcpy with a failed length check, leading to a buffer overflow.
network
low complexity
denx fedoraproject CWE-120
critical
 9.8
9.8
2022-05-14 CVE-2022-1379 Server-Side Request Forgery (SSRF) vulnerability in multiple products
URL Restriction Bypass in GitHub repository plantuml/plantuml prior to V1.2022.5.
network
low complexity
plantuml fedoraproject CWE-918
critical
 9.1
9.1
2022-05-12 CVE-2022-28919 Cross-site Scripting vulnerability in multiple products
HTMLCreator release_stable_2020-07-29 was discovered to contain a cross-site scripting (XSS) vulnerability via the function _generateFilename.
network
low complexity
dokuwiki fedoraproject CWE-79
6.1
6.1
2022-05-12 CVE-2022-1674 NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938.
local
low complexity
vim fedoraproject apple
5.5
5.5
2022-05-11 CVE-2022-1622 Out-of-bounds Read vulnerability in multiple products
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file.
local
low complexity
libtiff fedoraproject netapp apple CWE-125
5.5
5.5
2022-05-11 CVE-2022-1623 Out-of-bounds Read vulnerability in multiple products
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file.
local
low complexity
libtiff fedoraproject netapp debian CWE-125
5.5
5.5