Vulnerabilities > Fedoraproject > Fedora

DATE CVE VULNERABILITY TITLE RISK
2019-08-09 CVE-2019-14234 SQL Injection vulnerability in multiple products
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4.
network
low complexity
djangoproject fedoraproject debian CWE-89
critical
 9.8
9.8
2019-08-07 CVE-2019-14745 Command Injection vulnerability in multiple products
In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c.
local
low complexity
radare fedoraproject CWE-77
7.8
7.8
2019-08-07 CVE-2019-14744 OS Command Injection vulnerability in multiple products
In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. 		7.8
7.8
2019-08-07 CVE-2019-14734 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-07 CVE-2019-14733 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-07 CVE-2019-14732 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-06 CVE-2019-14692 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-06 CVE-2019-14691 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-06 CVE-2019-14690 Out-of-bounds Write vulnerability in multiple products
AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
network
low complexity
adplug-project fedoraproject CWE-787
8.8
8.8
2019-08-05 CVE-2019-14664 Cleartext Transmission of Sensitive Information vulnerability in multiple products
In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email.
network
low complexity
enigmail fedoraproject CWE-319
6.5
6.5