VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Fedora
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-04-03
CVE-2022-28390
Double Free vulnerability in multiple products
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
local
low complexity
linux
fedoraproject
debian
netapp
CWE-415
7.8
7.8
2022-04-01
CVE-2021-3847
Improper Preservation of Permissions vulnerability in multiple products
An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount.
local
low complexity
linux
fedoraproject
CWE-281
7.8
7.8
2022-03-30
CVE-2022-24790
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications.
network
low complexity
puma
debian
fedoraproject
7.5
7.5
2022-03-30
CVE-2022-1160
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.4647.
local
low complexity
vim
fedoraproject
7.8
7.8
2022-03-30
CVE-2022-1154
Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646.
local
low complexity
vim
fedoraproject
debian
oracle
7.8
7.8
2022-03-30
CVE-2022-28202
Cross-site Scripting vulnerability in multiple products
An XSS issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2.
network
low complexity
mediawiki
fedoraproject
debian
CWE-79
6.1
6.1
2022-03-29
CVE-2022-1122
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files.
local
low complexity
uclouvain
fedoraproject
debian
5.5
5.5
2022-03-29
CVE-2022-1055
Use After Free vulnerability in multiple products
A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation.
local
low complexity
linux
redhat
fedoraproject
canonical
netapp
CWE-416
7.8
7.8
2022-03-28
CVE-2022-26280
Out-of-bounds Read vulnerability in multiple products
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init.
network
high complexity
libarchive
fedoraproject
CWE-125
6.5
6.5
2022-03-28
CVE-2022-24303
Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.
network
low complexity
python
fedoraproject
critical
9.1
9.1
«
Previous
1
2
...
133
134
135
(current)
136
137
...
464
465
»
Next