Vulnerabilities > Fedoraproject > Fedora > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-23 | CVE-2022-45873 | Resource Exhaustion vulnerability in multiple products systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace. | 5.5 |
| 2022-11-23 | CVE-2022-45866 | Path Traversal vulnerability in multiple products qpress before PierreLvx/qpress 20220819 and before version 11.3, as used in Percona XtraBackup and other products, allows directory traversal via ../ in a .qp file. | 5.3 |
| 2022-11-23 | CVE-2022-45149 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. | 5.4 |
| 2022-11-23 | CVE-2022-45150 | Cross-site Scripting vulnerability in multiple products A reflected cross-site scripting vulnerability was discovered in Moodle. | 6.1 |
| 2022-11-23 | CVE-2022-45151 | Cross-site Scripting vulnerability in multiple products The stored-XSS vulnerability was discovered in Moodle which exists due to insufficient sanitization of user-supplied data in several "social" user profile fields. | 5.4 |
| 2022-11-22 | CVE-2022-3500 | Uncaught Exception vulnerability in multiple products A vulnerability was found in keylime. | 5.1 |
| 2022-11-16 | CVE-2022-39317 | Out-of-bounds Read vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 4.6 |
| 2022-11-16 | CVE-2022-39318 | Divide By Zero vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 5.7 |
| 2022-11-16 | CVE-2022-39319 | Out-of-bounds Read vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 4.6 |
| 2022-11-16 | CVE-2022-39316 | Out-of-bounds Read vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 5.7 |