Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-15	CVE-2019-3811	A vulnerability was found in sssd. low complexity fedoraproject debian opensuse redhat	5.2
2019-01-14	CVE-2018-16886	Improper Authentication vulnerability in multiple products etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. network high complexity etcd redhat fedoraproject CWE-287	8.1
2019-01-14	CVE-2019-6251	WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. network low complexity gnome wpewebkit webkitgtk fedoraproject canonical opensuse	8.1
2019-01-09	CVE-2019-3498	Injection vulnerability in multiple products In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.page_not_found(), leading to content spoofing (in a 404 error page) if a user fails to recognize that a crafted URL has malicious content. network low complexity djangoproject debian canonical fedoraproject CWE-74	6.5
2019-01-03	CVE-2018-20662	Improper Input Validation vulnerability in multiple products In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing. network low complexity freedesktop debian fedoraproject canonical redhat CWE-20	6.5
2019-01-02	CVE-2019-3500	Information Exposure Through Log Files vulnerability in multiple products aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users to obtain sensitive information by reading this file. local low complexity aria2-project debian fedoraproject canonical CWE-532	7.8
2018-12-30	CVE-2018-20593	Out-of-bounds Write vulnerability in multiple products In Mini-XML (aka mxml) v2.12, there is stack-based buffer overflow in the scan_file function in mxmldoc.c. local low complexity msweet fedoraproject CWE-787	5.5
2018-12-30	CVE-2018-20592	Use After Free vulnerability in multiple products In Mini-XML (aka mxml) v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. local low complexity msweet fedoraproject CWE-416	5.5
2018-12-28	CVE-2018-20549	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There is an illegal WRITE memory access at caca/file.c (function caca_file_read) in libcaca 0.99.beta19. network low complexity libcaca-project canonical debian fedoraproject opensuse CWE-119	8.8
2018-12-28	CVE-2018-20548	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 1bpp data. network low complexity libcaca-project canonical fedoraproject opensuse CWE-119	8.8

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject