Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-07	CVE-2019-18808	Memory Leak vulnerability in multiple products A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247. local low complexity linux fedoraproject opensuse canonical CWE-401	5.5
2019-11-07	CVE-2019-18804	NULL Pointer Dereference vulnerability in multiple products DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp. network low complexity djvulibre-project debian fedoraproject canonical opensuse CWE-476	7.5
2019-11-06	CVE-2016-1000037	Cross-site Scripting vulnerability in multiple products Pagure: XSS possible in file attachment endpoint network low complexity redhat fedoraproject CWE-79	6.1
2019-11-06	CVE-2010-4178	Insufficiently Protected Credentials vulnerability in multiple products MySQL-GUI-tools (mysql-administrator) leaks passwords into process list after with launch of mysql text console local low complexity oracle fedoraproject CWE-522	5.5
2019-11-06	CVE-2019-14847	NULL Pointer Dereference vulnerability in multiple products A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. network low complexity samba opensuse fedoraproject CWE-476	4.9
2019-11-06	CVE-2019-14833	Weak Password Requirements vulnerability in multiple products A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. network low complexity samba opensuse fedoraproject CWE-521	5.4
2019-11-06	CVE-2019-10218	Path Traversal vulnerability in multiple products A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. network low complexity samba fedoraproject CWE-22	6.5
2019-11-05	CVE-2013-5123	Improper Authentication vulnerability in multiple products The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. network high complexity pypa virtualenv fedoraproject redhat debian CWE-287	5.9
2019-11-04	CVE-2015-8980	Improper Input Validation vulnerability in multiple products The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code. network low complexity php-gettext-project opensuse redhat fedoraproject CWE-20 critical	9.8
2019-11-04	CVE-2013-4409	Improper Input Validation vulnerability in multiple products An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests. network low complexity reviewboard fedoraproject redhat CWE-20 critical	9.8

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject