Vulnerabilities > Fedoraproject > Fedora > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-07-17 CVE-2020-14928 Injection vulnerability in multiple products
evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3.
network
high complexity
gnome debian fedoraproject canonical CWE-74
5.9
5.9
2020-07-17 CVE-2020-15803 Cross-site Scripting vulnerability in multiple products
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
network
low complexity
zabbix fedoraproject debian opensuse CWE-79
6.1
6.1
2020-07-15 CVE-2020-15117 Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products
In Synergy before version 1.12.0, a Synergy server can be crashed by receiving a kMsgHelloBack packet with a client name length set to 0xffffffff (4294967295) if the servers memory is less than 4 GB.
network
low complexity
symless fedoraproject CWE-754
6.5
6.5
2020-07-15 CVE-2020-14619 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser).
network
low complexity
netapp fedoraproject canonical oracle
6.5
6.5
2020-07-15 CVE-2020-14614 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
netapp fedoraproject canonical oracle
4.9
4.9
2020-07-15 CVE-2020-14597 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
netapp fedoraproject canonical oracle
4.9
4.9
2020-07-15 CVE-2020-14591 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plug-in).
network
low complexity
oracle netapp fedoraproject
6.5
6.5
2020-07-15 CVE-2020-14586 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).
network
low complexity
oracle netapp fedoraproject canonical
4.9
4.9
2020-07-15 CVE-2020-14576 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF).
network
low complexity
oracle netapp fedoraproject canonical
6.5
6.5
2020-07-15 CVE-2020-14575 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML).
network
low complexity
netapp fedoraproject canonical oracle
4.9
4.9