Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2021-02-11 CVE-2020-35498 Resource Exhaustion vulnerability in multiple products
A vulnerability was found in openvswitch.
network
low complexity
openvswitch debian fedoraproject CWE-400
7.5
7.5
2021-02-10 CVE-2020-13578 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2020-13577 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2020-13576 Integer Overflow or Wraparound vulnerability in multiple products
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-190
critical
 9.8
9.8
2021-02-10 CVE-2020-13575 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2020-13574 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2021-0326 Out-of-bounds Write vulnerability in multiple products
In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. 		7.5
7.5
2021-02-10 CVE-2021-27135 xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.
network
low complexity
invisible-island debian fedoraproject
critical
 9.8
9.8
2021-02-09 CVE-2021-26937 Argument Injection or Modification vulnerability in multiple products
encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.
network
low complexity
gnu debian fedoraproject CWE-88
critical
 9.8
9.8
2021-02-09 CVE-2021-21148 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-787
8.8
8.8