VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Fedora
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-05-30
CVE-2023-34152
OS Command Injection vulnerability in multiple products
A vulnerability was found in ImageMagick.
network
low complexity
imagemagick
fedoraproject
redhat
CWE-78
critical
9.8
9.8
2023-05-30
CVE-2023-34153
Command Injection vulnerability in multiple products
A vulnerability was found in ImageMagick.
local
low complexity
imagemagick
fedoraproject
redhat
CWE-77
7.8
7.8
2023-05-26
CVE-2023-28321
Improper Certificate Validation vulnerability in multiple products
An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates.
network
high complexity
haxx
debian
fedoraproject
netapp
apple
CWE-295
5.9
5.9
2023-05-26
CVE-2023-28322
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback.
network
high complexity
haxx
fedoraproject
apple
netapp
3.7
3.7
2023-05-26
CVE-2023-1667
NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference was found In libssh during re-keying with algorithm guessing.
network
low complexity
libssh
fedoraproject
debian
redhat
CWE-476
6.5
6.5
2023-05-26
CVE-2023-1981
Resource Exhaustion vulnerability in multiple products
A vulnerability was found in the avahi library.
local
low complexity
avahi
fedoraproject
redhat
CWE-400
5.5
5.5
2023-05-26
CVE-2023-22970
Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file.
local
low complexity
usebottles
fedoraproject
7.8
7.8
2023-05-26
CVE-2023-2283
Improper Authentication vulnerability in multiple products
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems.
network
low complexity
libssh
fedoraproject
redhat
CWE-287
6.5
6.5
2023-05-26
CVE-2023-32681
Requests is a HTTP library.
network
high complexity
python
fedoraproject
6.1
6.1
2023-05-25
CVE-2023-32067
c-ares is an asynchronous resolver library.
network
low complexity
c-ares-project
fedoraproject
debian
7.5
7.5
«
Previous
1
2
...
59
60
61
(current)
62
63
...
465
466
»
Next