Vulnerabilities > Fedoraproject > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-04-22 CVE-2024-32460 Out-of-bounds Read vulnerability in multiple products
FreeRDP is a free implementation of the Remote Desktop Protocol.
network
low complexity
freerdp fedoraproject CWE-125
critical
9.8
2024-04-22 CVE-2024-32039 Integer Overflow or Wraparound vulnerability in multiple products
FreeRDP is a free implementation of the Remote Desktop Protocol.
network
low complexity
freerdp fedoraproject CWE-190
critical
9.8
2024-04-22 CVE-2024-32040 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
FreeRDP is a free implementation of the Remote Desktop Protocol.
network
low complexity
freerdp fedoraproject CWE-191
critical
9.8
2024-04-22 CVE-2024-32041 Out-of-bounds Read vulnerability in multiple products
FreeRDP is a free implementation of the Remote Desktop Protocol.
network
low complexity
freerdp fedoraproject CWE-125
critical
9.8
2024-04-22 CVE-2024-32458 Out-of-bounds Read vulnerability in multiple products
FreeRDP is a free implementation of the Remote Desktop Protocol.
network
low complexity
freerdp fedoraproject CWE-125
critical
9.8
2024-04-10 CVE-2024-3157 Out-of-bounds Write vulnerability in multiple products
Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures.
network
low complexity
google fedoraproject CWE-787
critical
9.6
2024-04-04 CVE-2024-3116 pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the validate binary path API.
network
low complexity
pgadmin fedoraproject
critical
9.8
2024-04-02 CVE-2024-3209 Unspecified vulnerability in Fedoraproject Fedora 38/39/40
A vulnerability was found in UPX up to 4.2.2.
network
low complexity
fedoraproject
critical
9.8
2024-02-23 CVE-2024-27319 Out-of-bounds Read vulnerability in multiple products
Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the ONNX_ASSERT and ONNX_ASSERTM functions have an off by one string copy.
network
low complexity
linuxfoundation fedoraproject CWE-125
critical
9.1
2024-02-19 CVE-2024-1597 SQL Injection vulnerability in multiple products
pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE.
network
low complexity
postgresql fedoraproject CWE-89
critical
9.8