VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2019-10-31
CVE-2013-1930
Improper Input Validation vulnerability in multiple products
MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues.
network
low complexity
mantisbt
fedoraproject
CWE-20
4.0
4.0
2019-10-31
CVE-2019-18424
OS Command Injection vulnerability in multiple products
An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device.
low complexity
xen
debian
fedoraproject
opensuse
CWE-78
6.8
6.8
2019-10-31
CVE-2019-18420
Use of Externally-Controlled Format String vulnerability in multiple products
An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall.
network
low complexity
xen
debian
fedoraproject
CWE-134
6.5
6.5
2019-10-22
CVE-2019-15587
Cross-site Scripting vulnerability in multiple products
In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
network
low complexity
loofah-project
fedoraproject
canonical
debian
CWE-79
5.4
5.4
2019-10-16
CVE-2019-3018
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
high complexity
oracle
canonical
fedoraproject
netapp
4.4
4.4
2019-10-16
CVE-2019-3011
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API).
network
low complexity
oracle
canonical
fedoraproject
netapp
6.5
6.5
2019-10-16
CVE-2019-3009
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection).
network
high complexity
oracle
canonical
fedoraproject
netapp
4.4
4.4
2019-10-16
CVE-2019-3004
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser).
network
low complexity
oracle
canonical
fedoraproject
netapp
6.5
6.5
2019-10-16
CVE-2019-2998
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
canonical
fedoraproject
netapp
4.9
4.9
2019-10-16
CVE-2019-2997
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).
network
low complexity
oracle
canonical
fedoraproject
netapp
4.9
4.9
«
Previous
1
2
...
166
167
168
(current)
169
170
...
219
220
»
Next