Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-10 | CVE-2021-34341 | Out-of-bounds Read vulnerability in multiple products Ming 0.4.8 has an out-of-bounds read vulnerability in the function decompileIF() in the decompile.c file that causes a direct segmentation fault and leads to denial of service. | 6.5 |
| 2022-03-10 | CVE-2021-34342 | Out-of-bounds Read vulnerability in multiple products Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak. | 6.5 |
| 2022-03-10 | CVE-2021-3733 | Resource Exhaustion vulnerability in multiple products There's a flaw in urllib's AbstractBasicAuthHandler class. | 6.5 |
| 2022-03-09 | CVE-2022-24349 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. | 4.4 |
| 2022-03-09 | CVE-2022-24917 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. | 4.4 |
| 2022-03-09 | CVE-2022-24918 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected Javascript code inside it for items’ page and send it to other users. | 4.4 |
| 2022-03-09 | CVE-2022-24919 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected Javascript code inside it for graphs’ page and send it to other users. | 4.4 |
| 2022-03-08 | CVE-2022-24713 | regex is an implementation of regular expressions for the Rust language. | 7.5 |
| 2022-03-07 | CVE-2022-24737 | HTTPie is a command-line HTTP client. | 6.5 |
| 2022-03-06 | CVE-2022-26495 | Integer Overflow or Wraparound vulnerability in multiple products In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. | 9.8 |