Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-08	CVE-2022-0522	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2. local low complexity radare fedoraproject CWE-119	7.1
2022-02-08	CVE-2022-0523	Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2. local low complexity radare fedoraproject	7.8
2022-02-08	CVE-2022-21703	Cross-Site Request Forgery (CSRF) vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. network low complexity grafana netapp fedoraproject CWE-352	8.8
2022-02-08	CVE-2022-21713	Authorization Bypass Through User-Controlled Key vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. network low complexity grafana netapp fedoraproject CWE-639	4.3
2022-02-08	CVE-2022-21702	Cross-site Scripting vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. network low complexity grafana netapp fedoraproject CWE-79	5.4
2022-02-07	CVE-2022-21712	twisted is an event-driven networking engine written in Python. network low complexity twisted debian fedoraproject	7.5
2022-02-07	CVE-2022-23613	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products xrdp is an open source remote desktop protocol (RDP) server. local low complexity neutrinolabs fedoraproject CWE-191	7.8
2022-02-06	CVE-2021-41816	Integer Overflow or Wraparound vulnerability in multiple products CGI.escape_html in Ruby before 2.7.5 and 3.x before 3.0.3 has an integer overflow and resultant buffer overflow via a long string on platforms (such as Windows) where size_t and long have different numbers of bytes. network low complexity ruby-lang fedoraproject CWE-190 critical	9.8
2022-02-04	CVE-2021-40401	Unchecked Return Value vulnerability in multiple products A use-after-free vulnerability exists in the RS-274X aperture definition tokenization functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and Gerbv forked 2.7.1. local low complexity gerbv-project fedoraproject debian CWE-252	8.6
2022-02-04	CVE-2021-40403	An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.7.0 and dev (commit b5f1eacd), and Gerbv forked 2.8.0. local low complexity gerbv-project fedoraproject debian	6.3

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject