VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-05-10
CVE-2023-32570
Race Condition vulnerability in multiple products
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.
network
high complexity
videolan
fedoraproject
CWE-362
5.9
5.9
2023-05-09
CVE-2023-2609
NULL Pointer Dereference vulnerability in multiple products
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
local
low complexity
vim
fedoraproject
CWE-476
5.5
5.5
2023-05-09
CVE-2023-31489
An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function.
local
low complexity
frrouting
fedoraproject
5.5
5.5
2023-05-05
CVE-2023-29659
Divide By Zero vulnerability in multiple products
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.
network
low complexity
struktur
fedoraproject
CWE-369
6.5
6.5
2023-05-03
CVE-2023-2459
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
6.5
6.5
2023-05-03
CVE-2023-2462
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2463
Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2464
Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to perform an origin spoof in the security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2465
Inappropriate implementation in CORS in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
2023-05-03
CVE-2023-2466
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
network
low complexity
google
fedoraproject
debian
4.3
4.3
«
Previous
1
2
...
24
25
26
(current)
27
28
...
186
187
»
Next