VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Fedora
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-01-30
CVE-2024-1077
Use After Free vulnerability in multiple products
Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file.
network
low complexity
google
fedoraproject
CWE-416
8.8
8.8
2024-01-29
CVE-2024-23334
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.
network
low complexity
aiohttp
fedoraproject
7.5
7.5
2024-01-29
CVE-2024-23829
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.
network
low complexity
aiohttp
fedoraproject
6.5
6.5
2024-01-29
CVE-2023-40546
NULL Pointer Dereference vulnerability in multiple products
A flaw was found in Shim when an error happened while creating a new ESL variable.
local
low complexity
redhat
fedoraproject
CWE-476
5.5
5.5
2024-01-29
CVE-2023-40549
Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary.
local
low complexity
redhat
fedoraproject
CWE-125
5.5
5.5
2024-01-29
CVE-2023-40550
Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information.
local
low complexity
redhat
fedoraproject
CWE-125
5.5
5.5
2024-01-29
CVE-2023-40551
Out-of-bounds Read vulnerability in multiple products
A flaw was found in the MZ binary format in Shim.
local
low complexity
redhat
fedoraproject
CWE-125
5.1
5.1
2024-01-29
CVE-2023-46838
NULL Pointer Dereference vulnerability in multiple products
Transmit requests in Xen's virtual network protocol can consist of multiple parts.
network
low complexity
linux
fedoraproject
debian
CWE-476
7.5
7.5
2024-01-24
CVE-2024-0804
Insufficient policy enforcement in iOS Security UI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
7.5
7.5
2024-01-24
CVE-2024-0805
Inappropriate implementation in Downloads in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to perform domain spoofing via a crafted domain name.
network
low complexity
google
fedoraproject
4.3
4.3
«
Previous
1
2
...
14
15
16
(current)
17
18
...
460
461
»
Next