Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2024-02-26 CVE-2024-1622 Due to a mistake in error checking, Routinator will terminate when an incoming RTR connection is reset by the peer too quickly after opening.
network
low complexity
nlnetlabs fedoraproject
7.5
7.5
2024-02-26 CVE-2024-23835 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject CWE-770
7.5
7.5
2024-02-26 CVE-2024-23836 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject CWE-770
7.5
7.5
2024-02-26 CVE-2024-23837 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
LibHTP is a security-aware parser for the HTTP protocol.
network
low complexity
oisf fedoraproject CWE-770
7.5
7.5
2024-02-26 CVE-2024-23839 Use After Free vulnerability in multiple products
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
high complexity
oisf fedoraproject CWE-416
8.1
8.1
2024-02-26 CVE-2024-24568 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf fedoraproject
5.3
5.3
2024-02-23 CVE-2024-27318 Path Traversal vulnerability in multiple products
Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory.
network
low complexity
linuxfoundation fedoraproject CWE-22
7.5
7.5
2024-02-23 CVE-2024-27319 Out-of-bounds Read vulnerability in multiple products
Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the ONNX_ASSERT and ONNX_ASSERTM functions have an off by one string copy.
network
low complexity
linuxfoundation fedoraproject CWE-125
critical
 9.1
9.1
2024-02-23 CVE-2024-25629 Out-of-bounds Read vulnerability in multiple products
c-ares is a C library for asynchronous DNS requests.
local
low complexity
c-ares fedoraproject CWE-125
5.5
5.5
2024-02-22 CVE-2023-52160 Improper Authentication vulnerability in multiple products
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass.
network
low complexity
debian redhat fedoraproject w1-fi CWE-287
6.5
6.5