Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-10	CVE-2019-11065	Gradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to download dependencies when the built-in JavaScript or CoffeeScript Gradle plugins are used. network high complexity gradle fedoraproject	5.9
2019-04-09	CVE-2019-3842	Incorrect Authorization vulnerability in multiple products In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT variable. local high complexity systemd-project redhat fedoraproject debian CWE-863	7.0
2019-04-09	CVE-2019-9133	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. local low complexity kmplayer fedoraproject CWE-191	5.5
2019-04-09	CVE-2019-3887	A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. local high complexity linux fedoraproject canonical redhat	5.6
2019-04-09	CVE-2019-3880	Path Traversal vulnerability in multiple products A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. network low complexity samba debian redhat fedoraproject opensuse CWE-22	5.4
2019-04-09	CVE-2019-3870	Incorrect Default Permissions vulnerability in multiple products A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. local low complexity samba fedoraproject synology CWE-276	6.1
2019-04-09	CVE-2019-10903	Out-of-bounds Read vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. network low complexity wireshark fedoraproject debian opensuse canonical CWE-125	7.5
2019-04-09	CVE-2019-10902	Unchecked Return Value vulnerability in multiple products In Wireshark 3.0.0, the TSDNS dissector could crash. network low complexity wireshark fedoraproject CWE-252	7.5
2019-04-09	CVE-2019-10901	NULL Pointer Dereference vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. network low complexity wireshark fedoraproject debian opensuse canonical CWE-476	7.5
2019-04-09	CVE-2019-10900	Infinite Loop vulnerability in multiple products In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. network low complexity wireshark fedoraproject CWE-835	7.5

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject