Vulnerabilities > Fedoraproject > Fedora > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-26 | CVE-2021-21273 | Open Redirect vulnerability in multiple products Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). | 6.1 |
| 2021-02-26 | CVE-2021-21330 | Open Redirect vulnerability in multiple products aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. | 6.1 |
| 2021-02-26 | CVE-2020-24455 | Missing Initialization of Resource vulnerability in multiple products Missing initialization of a variable in the TPM2 source may allow a privileged user to potentially enable an escalation of privilege via local access. | 6.7 |
| 2021-02-23 | CVE-2021-3407 | Double Free vulnerability in multiple products A flaw was found in mupdf 1.18.0. | 5.5 |
| 2021-02-23 | CVE-2021-3405 | Out-of-bounds Write vulnerability in multiple products A flaw was found in libebml before 1.4.2. | 6.5 |
| 2021-02-23 | CVE-2021-26927 | NULL Pointer Dereference vulnerability in multiple products A flaw was found in jasper before 2.0.25. | 5.5 |
| 2021-02-23 | CVE-2021-20229 | Incorrect Authorization vulnerability in multiple products A flaw was found in PostgreSQL in versions before 13.2. | 4.0 |
| 2021-02-18 | CVE-2020-28463 | Server-Side Request Forgery (SSRF) vulnerability in multiple products All versions of package reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. | 6.5 |
| 2021-02-17 | CVE-2021-26933 | An issue was discovered in Xen 4.9 through 4.14.x. | 5.5 |
| 2021-02-17 | CVE-2021-26932 | An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. | 5.5 |