Vulnerabilities > Fedoraproject > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-30 | CVE-2021-4182 | Infinite Loop vulnerability in multiple products Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4184 | Infinite Loop vulnerability in multiple products Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4185 | Infinite Loop vulnerability in multiple products Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4186 | NULL Pointer Dereference vulnerability in multiple products Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4190 | Excessive Iteration vulnerability in multiple products Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-29 | CVE-2021-23727 | Command Injection vulnerability in multiple products This affects the package celery before 5.2.2. | 7.5 |
2021-12-29 | CVE-2021-4187 | Use After Free vulnerability in multiple products vim is vulnerable to Use After Free | 7.8 |
2021-12-27 | CVE-2021-4173 | Use After Free vulnerability in multiple products vim is vulnerable to Use After Free | 7.8 |
2021-12-25 | CVE-2021-4166 | Out-of-bounds Read vulnerability in multiple products vim is vulnerable to Out-of-bounds Read | 7.1 |
2021-12-23 | CVE-2021-3621 | OS Command Injection vulnerability in multiple products A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands. | 8.8 |