VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-03-20
CVE-2024-2631
Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page.
network
low complexity
google
fedoraproject
4.3
4.3
2024-02-29
CVE-2024-24246
Out-of-bounds Write vulnerability in multiple products
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.
local
low complexity
qpdf-project
fedoraproject
CWE-787
5.5
5.5
2024-02-22
CVE-2023-52160
Improper Authentication vulnerability in multiple products
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass.
network
low complexity
debian
redhat
fedoraproject
w1-fi
CWE-287
6.5
6.5
2024-02-12
CVE-2023-6681
A vulnerability was found in JWCrypto.
network
low complexity
latchset
redhat
fedoraproject
5.3
5.3
2024-02-12
CVE-2023-52429
Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products
dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.
local
low complexity
linux
fedoraproject
CWE-754
5.5
5.5
2024-02-11
CVE-2024-1151
Out-of-bounds Write vulnerability in multiple products
A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel.
local
low complexity
debian
redhat
fedoraproject
linux
CWE-787
5.5
5.5
2024-02-08
CVE-2024-1312
A use-after-free flaw was found in the Linux kernel's Memory Management subsystem when a user wins two races at the same time with a fail in the mas_prev_slot function.
local
high complexity
linux
fedoraproject
4.7
4.7
2024-02-06
CVE-2024-0690
Improper Encoding or Escaping of Output vulnerability in multiple products
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios.
local
low complexity
redhat
fedoraproject
CWE-116
5.5
5.5
2024-01-31
CVE-2023-6780
An integer overflow was found in the __vsyslog_internal function of the glibc library.
network
low complexity
gnu
fedoraproject
5.3
5.3
2024-01-29
CVE-2024-23829
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.
network
low complexity
aiohttp
fedoraproject
6.5
6.5
«
Previous
1
2
3
(current)
4
5
...
182
183
»
Next