Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2023-05-26 CVE-2023-1667 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference was found In libssh during re-keying with algorithm guessing.
network
low complexity
libssh fedoraproject debian redhat CWE-476
6.5
6.5
2023-05-26 CVE-2023-1981 Resource Exhaustion vulnerability in multiple products
A vulnerability was found in the avahi library.
local
low complexity
avahi fedoraproject redhat CWE-400
5.5
5.5
2023-05-26 CVE-2023-22970 Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file.
local
low complexity
usebottles fedoraproject
7.8
7.8
2023-05-26 CVE-2023-2283 Improper Authentication vulnerability in multiple products
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems.
network
low complexity
libssh fedoraproject redhat CWE-287
6.5
6.5
2023-05-26 CVE-2023-32681 Requests is a HTTP library.
network
high complexity
python fedoraproject
6.1
6.1
2023-05-25 CVE-2023-32067 c-ares is an asynchronous resolver library.
network
low complexity
c-ares-project fedoraproject debian
7.5
7.5
2023-05-25 CVE-2023-31124 Use of Insufficiently Random Values vulnerability in multiple products
c-ares is an asynchronous resolver library.
network
high complexity
c-ares-project fedoraproject CWE-330
3.7
3.7
2023-05-25 CVE-2023-31130 Out-of-bounds Write vulnerability in multiple products
c-ares is an asynchronous resolver library.
local
high complexity
c-ares-project fedoraproject debian CWE-787
6.4
6.4
2023-05-25 CVE-2023-31147 c-ares is an asynchronous resolver library.
network
low complexity
c-ares-project fedoraproject
6.5
6.5
2023-05-18 CVE-2023-33204 Integer Overflow or Wraparound vulnerability in multiple products
sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. 		7.8
7.8