VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-10-17
CVE-2023-45803
urllib3 is a user-friendly HTTP client library for Python.
high complexity
python
fedoraproject
4.2
4.2
2023-10-13
CVE-2023-39999
Exposure of Sensitive Information to an Unauthorized Actor in WordPress from 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.13, from 6.0 through 6.0.5, from 5.9 through 5.9.7, from 5.8 through 5.8.7, from 5.7 through 5.7.9, from 5.6 through 5.6.11, from 5.5 through 5.5.12, from 5.4 through 5.4.13, from 5.3 through 5.3.15, from 5.2 through 5.2.18, from 5.1 through 5.1.16, from 5.0 through 5.0.19, from 4.9 through 4.9.23, from 4.8 through 4.8.22, from 4.7 through 4.7.26, from 4.6 through 4.6.26, from 4.5 through 4.5.29, from 4.4 through 4.4.30, from 4.3 through 4.3.31, from 4.2 through 4.2.35, from 4.1 through 4.1.38.
network
low complexity
wordpress
fedoraproject
4.3
4.3
2023-10-12
CVE-2023-43789
Out-of-bounds Read vulnerability in multiple products
A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds read error and read contents of memory on the system.
local
low complexity
libxpm-project
redhat
fedoraproject
CWE-125
5.5
5.5
2023-10-11
CVE-2023-5475
Inappropriate implementation in DevTools in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension.
network
low complexity
google
fedoraproject
debian
6.5
6.5
2023-10-11
CVE-2023-5484
Inappropriate implementation in Navigation in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
6.5
6.5
2023-10-11
CVE-2023-5487
Inappropriate implementation in Fullscreen in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
network
low complexity
google
fedoraproject
6.5
6.5
2023-10-10
CVE-2023-45129
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation.
network
low complexity
matrix
fedoraproject
4.9
4.9
2023-10-10
CVE-2023-43785
Out-of-bounds Read vulnerability in multiple products
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function.
local
low complexity
x-org
redhat
fedoraproject
CWE-125
5.5
5.5
2023-10-10
CVE-2023-43786
Infinite Loop vulnerability in multiple products
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function.
local
low complexity
x-org
redhat
fedoraproject
CWE-835
5.5
5.5
2023-10-10
CVE-2023-43788
Out-of-bounds Read vulnerability in multiple products
A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function.
local
low complexity
x-org
fedoraproject
redhat
CWE-125
5.5
5.5
«
Previous
1
2
...
13
14
15
(current)
16
17
...
188
189
»
Next