Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-13	CVE-2023-3217	Use After Free vulnerability in multiple products Use after free in WebXR in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-416	8.8
2023-06-13	CVE-2023-20867	Improper Authentication vulnerability in multiple products A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. local high complexity vmware debian fedoraproject CWE-287	3.9
2023-06-12	CVE-2023-3161	Incorrect Calculation vulnerability in multiple products A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. local low complexity linux fedoraproject redhat CWE-682	5.5
2023-06-09	CVE-2023-2454	schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code. network low complexity postgresql redhat fedoraproject	7.2
2023-06-09	CVE-2023-2455	Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. network low complexity postgresql redhat fedoraproject	5.4
2023-06-09	CVE-2023-32732	gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for `-bin` suffixed headers will result in a disconnection by the gRPC server, but is typically allowed by HTTP2 proxies. network low complexity grpc fedoraproject	5.3
2023-06-08	CVE-2023-29402	Code Injection vulnerability in multiple products The go command may generate unexpected code at build time when using cgo. network low complexity golang fedoraproject CWE-94 critical	9.8
2023-06-08	CVE-2023-29403	Exposure of Resource to Wrong Sphere vulnerability in multiple products On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. local low complexity golang fedoraproject CWE-668	7.8
2023-06-08	CVE-2023-29404	Code Injection vulnerability in multiple products The go command may execute arbitrary code at build time when using cgo. network low complexity golang fedoraproject CWE-94 critical	9.8
2023-06-08	CVE-2023-29405	Injection vulnerability in multiple products The go command may execute arbitrary code at build time when using cgo. network low complexity golang fedoraproject CWE-74 critical	9.8

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject