VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-03-10
CVE-2021-3739
NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw was found in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAP_SYS_ADMIN’.
local
low complexity
linux
fedoraproject
netapp
CWE-476
7.1
7.1
2022-03-08
CVE-2022-24713
regex is an implementation of regular expressions for the Rust language.
network
low complexity
rust-lang
fedoraproject
debian
7.5
7.5
2022-03-06
CVE-2022-26490
Classic Buffer Overflow vulnerability in multiple products
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.
local
low complexity
linux
fedoraproject
netapp
debian
CWE-120
7.8
7.8
2022-03-04
CVE-2021-3656
Missing Authorization vulnerability in multiple products
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization.
local
low complexity
linux
fedoraproject
redhat
CWE-862
8.8
8.8
2022-03-04
CVE-2021-3737
Infinite Loop vulnerability in multiple products
A flaw was found in python.
network
low complexity
python
redhat
fedoraproject
canonical
netapp
oracle
CWE-835
7.5
7.5
2022-03-04
CVE-2021-3575
A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file.
local
low complexity
uclouvain
redhat
fedoraproject
7.8
7.8
2022-03-04
CVE-2021-23214
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.
network
high complexity
postgresql
fedoraproject
redhat
8.1
8.1
2022-03-04
CVE-2021-3743
An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel.
local
low complexity
linux
fedoraproject
netapp
oracle
7.1
7.1
2022-03-03
CVE-2021-3640
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page.
local
high complexity
linux
debian
fedoraproject
canonical
netapp
7.0
7.0
2022-03-03
CVE-2022-21716
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Twisted is an event-based framework for internet applications, supporting Python 3.6+.
network
low complexity
twisted
debian
oracle
fedoraproject
CWE-770
7.5
7.5
«
Previous
1
2
...
66
67
68
(current)
69
70
...
218
219
»
Next