Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-06	CVE-2012-1615	Improper Privilege Management vulnerability in Fedoraproject Fedora and Sectool A Privilege Escalation vulnerability exits in Fedoraproject Sectool due to an incorrect DBus file. local low complexity fedoraproject CWE-269	7.8
2019-12-05	CVE-2012-1115	Cross-site Scripting vulnerability in multiple products A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php. network low complexity ldap-account-manager fedoraproject debian CWE-79	6.1
2019-12-05	CVE-2012-1114	Cross-site Scripting vulnerability in multiple products A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. network low complexity ldap-account-manager fedoraproject debian CWE-79	6.1
2019-12-05	CVE-2012-1105	Information Exposure vulnerability in multiple products An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. local low complexity apereo fedoraproject debian CWE-200	5.5
2019-12-05	CVE-2018-1002102	Open Redirect vulnerability in multiple products Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbitrary hosts. network high complexity kubernetes fedoraproject CWE-601	2.6
2019-12-04	CVE-2019-19579	Improper Input Validation vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device (and assignable-add is not used), because of an incomplete fix for CVE-2019-18424. low complexity xen fedoraproject CWE-20	6.8
2019-12-03	CVE-2013-4411	Incorrect Authorization vulnerability in multiple products Review Board: URL processing gives unauthorized users access to review lists network low complexity reviewboard fedoraproject CWE-863	4.3
2019-12-03	CVE-2013-4235	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees local high complexity debian fedoraproject redhat CWE-367	4.7
2019-12-02	CVE-2013-4410	Incorrect Authorization vulnerability in multiple products ReviewBoard: has an access-control problem in REST API network low complexity reviewboard fedoraproject CWE-863	7.5
2019-12-02	CVE-2012-4480	Improper Privilege Management vulnerability in multiple products mom creates world-writable pid files in /var/run local low complexity ovirt fedoraproject CWE-269	7.8

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject