VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
>
Fedora
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-03-08
CVE-2024-23263
A logic issue was addressed with improved validation.
network
low complexity
apple
wpewebkit
webkitgtk
fedoraproject
6.5
6.5
2024-03-08
CVE-2024-23280
Injection vulnerability in multiple products
An injection issue was addressed with improved validation.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
CWE-74
6.5
6.5
2024-03-08
CVE-2024-23284
A logic issue was addressed with improved state management.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
6.5
6.5
2024-02-29
CVE-2024-24246
Out-of-bounds Write vulnerability in multiple products
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.
local
low complexity
qpdf-project
fedoraproject
CWE-787
5.5
5.5
2024-02-26
CVE-2024-24568
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf
fedoraproject
5.3
5.3
2024-02-23
CVE-2024-25629
Out-of-bounds Read vulnerability in multiple products
c-ares is a C library for asynchronous DNS requests.
local
low complexity
c-ares
fedoraproject
CWE-125
5.5
5.5
2024-02-22
CVE-2023-52160
Improper Authentication vulnerability in multiple products
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass.
network
low complexity
debian
redhat
fedoraproject
w1-fi
CWE-287
6.5
6.5
2024-02-21
CVE-2023-42843
Authentication Bypass by Spoofing vulnerability in multiple products
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
CWE-290
4.3
4.3
2024-02-21
CVE-2024-1672
Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
fedoraproject
5.4
5.4
2024-02-21
CVE-2024-1676
Cross-site Scripting vulnerability in multiple products
Inappropriate implementation in Navigation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to spoof security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-79
5.4
5.4
«
Previous
1
2
...
4
5
6
(current)
7
8
...
186
187
»
Next