Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-15 | CVE-2021-20279 | Cross-site Scripting vulnerability in multiple products The ID number user profile field required additional sanitizing to prevent a stored XSS risk in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17. | 5.4 |
| 2021-03-15 | CVE-2021-28363 | Improper Certificate Validation vulnerability in multiple products The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in some cases involving HTTPS to HTTPS proxies. | 6.5 |
| 2021-03-15 | CVE-2021-20179 | A flaw was found in pki-core. | 8.1 |
| 2021-03-15 | CVE-2021-28375 | Missing Authorization vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.6. | 7.8 |
| 2021-03-12 | CVE-2021-20232 | A flaw was found in gnutls. | 9.8 |
| 2021-03-12 | CVE-2021-20231 | A flaw was found in gnutls. | 9.8 |
| 2021-03-12 | CVE-2021-21367 | Switchboard Bluetooth Plug for elementary OS from version 2.3.0 and before version version 2.3.5 has an incorrect authorization vulnerability. | 8.1 |
| 2021-03-12 | CVE-2020-36281 | Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in pixFewColorsOctcubeQuantMixed in colorquant1.c. | 7.5 |
| 2021-03-12 | CVE-2020-36280 | Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in pixReadFromTiffStream, related to tiffio.c. | 7.5 |
| 2021-03-12 | CVE-2020-36279 | Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c. | 7.5 |