VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-05-17
CVE-2023-2731
NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file.
local
low complexity
libtiff
redhat
fedoraproject
CWE-476
5.5
5.5
2023-05-15
CVE-2023-1729
Out-of-bounds Write vulnerability in multiple products
A flaw was found in LibRaw.
network
low complexity
libraw
fedoraproject
redhat
CWE-787
6.5
6.5
2023-05-15
CVE-2023-2700
Memory Leak vulnerability in multiple products
A vulnerability was found in libvirt.
local
low complexity
redhat
fedoraproject
CWE-401
5.5
5.5
2023-05-05
CVE-2023-29659
Divide By Zero vulnerability in multiple products
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.
network
low complexity
struktur
fedoraproject
CWE-369
6.5
6.5
2023-05-03
CVE-2023-2459
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
6.5
6.5
2023-05-03
CVE-2023-2462
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2463
Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2464
Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to perform an origin spoof in the security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2465
Inappropriate implementation in CORS in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2466
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
«
1
(current)
2
3
4
5
...
273
274
»
Next