VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-06-09
CVE-2023-32732
gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for `-bin` suffixed headers will result in a disconnection by the gRPC server, but is typically allowed by HTTP2 proxies.
network
low complexity
grpc
fedoraproject
5.3
5.3
2023-06-08
CVE-2023-34969
D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon.
network
low complexity
freedesktop
fedoraproject
debian
6.5
6.5
2023-06-06
CVE-2023-33460
Memory Leak vulnerability in multiple products
There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function.
network
low complexity
yajl-project
fedoraproject
debian
CWE-401
6.5
6.5
2023-05-30
CVE-2023-34151
Integer Overflow or Wraparound vulnerability in multiple products
A vulnerability was found in ImageMagick.
local
low complexity
imagemagick
fedoraproject
redhat
debian
CWE-190
5.5
5.5
2023-05-26
CVE-2023-28321
Improper Certificate Validation vulnerability in multiple products
An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates.
network
high complexity
haxx
debian
fedoraproject
netapp
apple
CWE-295
5.9
5.9
2023-05-26
CVE-2023-1667
NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference was found In libssh during re-keying with algorithm guessing.
network
low complexity
libssh
fedoraproject
debian
redhat
CWE-476
6.5
6.5
2023-05-26
CVE-2023-1981
Resource Exhaustion vulnerability in multiple products
A vulnerability was found in the avahi library.
local
low complexity
avahi
fedoraproject
redhat
CWE-400
5.5
5.5
2023-05-26
CVE-2023-2283
Improper Authentication vulnerability in multiple products
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems.
network
low complexity
libssh
fedoraproject
redhat
CWE-287
6.5
6.5
2023-05-26
CVE-2023-32681
Requests is a HTTP library.
network
high complexity
python
fedoraproject
6.1
6.1
2023-05-25
CVE-2023-31130
Out-of-bounds Write vulnerability in multiple products
c-ares is an asynchronous resolver library.
local
high complexity
c-ares-project
fedoraproject
debian
CWE-787
6.4
6.4
«
Previous
1
2
...
24
25
26
(current)
27
28
...
188
189
»
Next