Vulnerabilities > Fedoraproject > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2023-39514 Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject
5.4
5.4
2023-09-05 CVE-2023-39515 Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject
4.8
4.8
2023-08-25 CVE-2023-40587 Pyramid is an open source Python web framework.
network
low complexity
agendaless fedoraproject
5.3
5.3
2023-08-25 CVE-2023-38201 A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration.
low complexity
keylime redhat fedoraproject
6.5
6.5
2023-08-22 CVE-2020-27418 Use After Free vulnerability in Fedoraproject Fedora Linux Kernel 5.9.0
A Use After Free vulnerability in Fedora Linux kernel 5.9.0-rc9 allows attackers to obatin sensitive information via vgacon_invert_region() function.
local
low complexity
fedoraproject CWE-416
4.4
4.4
2023-08-22 CVE-2022-48064 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c.
local
low complexity
gnu fedoraproject netapp CWE-770
5.5
5.5
2023-08-22 CVE-2022-48065 Memory Leak vulnerability in multiple products
GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
local
low complexity
gnu netapp fedoraproject CWE-401
5.5
5.5
2023-08-15 CVE-2023-4350 Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google debian fedoraproject
6.5
6.5
2023-08-15 CVE-2023-4359 Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96 allowed a remote attacker to potentially spoof elements of the security UI via a crafted HTML page.
network
low complexity
google debian fedoraproject
5.3
5.3
2023-08-15 CVE-2023-4360 Inappropriate implementation in Color in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page.
network
low complexity
google debian fedoraproject
4.3
4.3