Vulnerabilities > Fedoraproject
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-09 | CVE-2022-24512 | .NET and Visual Studio Remote Code Execution Vulnerability | 6.3 |
| 2022-03-08 | CVE-2022-24713 | regex is an implementation of regular expressions for the Rust language. | 7.5 |
| 2022-03-07 | CVE-2022-24737 | Information Exposure vulnerability in multiple products HTTPie is a command-line HTTP client. | 6.5 |
| 2022-03-06 | CVE-2022-26495 | Integer Overflow or Wraparound vulnerability in multiple products In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. | 9.8 |
| 2022-03-06 | CVE-2022-26496 | Out-of-bounds Write vulnerability in multiple products In nbd-server in nbd before 3.24, there is a stack-based buffer overflow. | 9.8 |
| 2022-03-06 | CVE-2022-26490 | Classic Buffer Overflow vulnerability in multiple products st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. | 7.8 |
| 2022-03-04 | CVE-2021-3656 | Missing Authorization vulnerability in multiple products A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. | 8.8 |
| 2022-03-04 | CVE-2021-3737 | Infinite Loop vulnerability in multiple products A flaw was found in python. | 7.5 |
| 2022-03-04 | CVE-2021-3575 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. | 7.8 |
| 2022-03-04 | CVE-2021-23214 | SQL Injection vulnerability in multiple products When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption. | 8.1 |