Vulnerabilities > Fedoraproject > High

DATE CVE VULNERABILITY TITLE RISK
2021-02-11 CVE-2019-19005 Double Free vulnerability in multiple products
A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image.
local
low complexity
autotrace-project fedoraproject CWE-415
7.8
7.8
2021-02-11 CVE-2021-22880 Resource Exhaustion vulnerability in multiple products
The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression denial of service (REDoS) vulnerability.
network
low complexity
rubyonrails fedoraproject CWE-400
7.5
7.5
2021-02-11 CVE-2020-35498 A vulnerability was found in openvswitch.
network
low complexity
openvswitch debian fedoraproject
7.5
7.5
2021-02-10 CVE-2020-13578 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2020-13577 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2020-13574 NULL Pointer Dereference vulnerability in multiple products
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107.
network
low complexity
genivia fedoraproject CWE-476
7.5
7.5
2021-02-10 CVE-2021-0326 Out-of-bounds Write vulnerability in multiple products
In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. 		7.5
7.5
2021-02-09 CVE-2021-21148 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-787
8.8
8.8
2021-02-09 CVE-2021-21145 Use After Free vulnerability in multiple products
Use after free in Fonts in Google Chrome prior to 88.0.4324.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2021-02-09 CVE-2021-21144 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in Tab Groups in Google Chrome prior to 88.0.4324.146 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
network
low complexity
google fedoraproject CWE-787
8.8
8.8