VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> Low
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-09-27
CVE-2023-41335
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation.
network
high complexity
matrix
fedoraproject
3.7
3.7
2023-08-08
CVE-2023-39978
Memory Leak vulnerability in multiple products
ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption) in Magick::Draw.
local
low complexity
imagemagick
fedoraproject
CWE-401
3.3
3.3
2023-08-02
CVE-2023-4016
Out-of-bounds Write vulnerability in multiple products
Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into the process heap.
local
low complexity
procps-project
fedoraproject
CWE-787
3.3
3.3
2023-07-19
CVE-2023-3674
A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate for some reason.
local
low complexity
keylime
fedoraproject
2.8
2.8
2023-06-13
CVE-2023-20867
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
local
high complexity
vmware
debian
fedoraproject
3.9
3.9
2023-06-06
CVE-2023-2602
Memory Leak vulnerability in multiple products
A vulnerability was found in the pthread_create() function in libcap.
local
low complexity
libcap-project
redhat
debian
fedoraproject
CWE-401
3.3
3.3
2023-05-26
CVE-2023-28322
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback.
network
high complexity
haxx
fedoraproject
apple
netapp
3.7
3.7
2023-05-25
CVE-2023-31124
Use of Insufficiently Random Values vulnerability in multiple products
c-ares is an asynchronous resolver library.
network
high complexity
c-ares-project
fedoraproject
CWE-330
3.7
3.7
2023-04-25
CVE-2023-25815
In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer.
local
high complexity
git-for-windows-project
fedoraproject
2.2
2.2
2023-03-27
CVE-2021-3923
A flaw was found in the Linux kernel's implementation of RDMA over infiniband.
local
low complexity
redhat
fedoraproject
2.3
2.3
«
Previous
1
2
(current)
3
4
5
...
11
12
»
Next