Vulnerabilities > Fedoraproject > Fedora > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-08 | CVE-2023-29403 | Exposure of Resource to Wrong Sphere vulnerability in multiple products On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. | 7.8 |
| 2023-06-06 | CVE-2023-2603 | Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in libcap. | 7.8 |
| 2023-06-05 | CVE-2023-3079 | Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-05-30 | CVE-2023-34153 | Command Injection vulnerability in multiple products A vulnerability was found in ImageMagick. | 7.8 |
| 2023-05-26 | CVE-2023-22970 | Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file. | 7.8 |
| 2023-05-25 | CVE-2023-32067 | c-ares is an asynchronous resolver library. | 7.5 |
| 2023-05-18 | CVE-2023-33204 | Integer Overflow or Wraparound vulnerability in multiple products sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. | 7.8 |
| 2023-05-17 | CVE-2023-24805 | OS Command Injection vulnerability in multiple products cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. | 8.8 |
| 2023-05-16 | CVE-2023-2721 | Use After Free vulnerability in multiple products Use after free in Navigation in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-05-16 | CVE-2023-2722 | Use After Free vulnerability in multiple products Use after free in Autofill UI in Google Chrome on Android prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |