Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-29	CVE-2021-33503	Resource Exhaustion vulnerability in multiple products An issue was discovered in urllib3 before 1.26.5. network low complexity python fedoraproject oracle CWE-400	7.5
2021-06-28	CVE-2020-28200	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension. network low complexity dovecot fedoraproject CWE-770	4.3
2021-06-28	CVE-2021-33515	Command Injection vulnerability in multiple products The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. network high complexity dovecot fedoraproject debian CWE-77	4.8
2021-06-28	CVE-2021-29157	Path Traversal vulnerability in multiple products Dovecot before 2.3.15 allows ../ Path Traversal. local low complexity dovecot fedoraproject CWE-22	5.5
2021-06-24	CVE-2021-32708	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products Flysystem is an open source file storage library for PHP. network high complexity thephpleague fedoraproject CWE-367	8.1
2021-06-22	CVE-2021-0561	Out-of-bounds Write vulnerability in multiple products In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. local low complexity google fedoraproject debian CWE-787	5.5
2021-06-21	CVE-2021-29063	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath v1.0.0 through v1.2.1 when the mpmathify function is called. network low complexity mpmath fedoraproject CWE-770	7.5
2021-06-18	CVE-2020-18442	Infinite Loop vulnerability in multiple products Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file". local low complexity zziplib-project debian fedoraproject CWE-835	3.3
2021-06-17	CVE-2021-34825	Cleartext Transmission of Sensitive Information vulnerability in multiple products Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on the local system. network low complexity quassel-irc fedoraproject CWE-319	7.5
2021-06-17	CVE-2021-3603	Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products PHPMailer 6.4.1 and earlier contain a vulnerability that can result in untrusted code being called (if such code is injected into the host project's scope by other means). network high complexity phpmailer-project fedoraproject CWE-829	8.1

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject