VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-12-08
CVE-2022-4122
A vulnerability was found in buildah.
network
low complexity
podman-project
fedoraproject
5.3
5.3
2022-12-04
CVE-2022-46391
Cross-site Scripting vulnerability in multiple products
AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks.
network
low complexity
awstats
debian
fedoraproject
CWE-79
6.1
6.1
2022-11-30
CVE-2022-46149
Cap'n Proto is a data interchange format and remote procedure call (RPC) system.
network
low complexity
capnproto
fedoraproject
5.4
5.4
2022-11-29
CVE-2022-4144
An out-of-bounds read flaw was found in the QXL display device emulation in QEMU.
local
low complexity
qemu
fedoraproject
redhat
6.5
6.5
2022-11-29
CVE-2022-4172
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table (ERST) device of QEMU in the read_erst_record() and write_erst_record() functions.
local
low complexity
qemu
fedoraproject
6.5
6.5
2022-11-28
CVE-2022-4129
Improper Locking vulnerability in multiple products
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP).
local
low complexity
linux
fedoraproject
CWE-667
5.5
5.5
2022-11-25
CVE-2022-39346
Nextcloud server is an open source personal cloud server.
network
low complexity
nextcloud
fedoraproject
6.5
6.5
2022-11-23
CVE-2022-45873
Resource Exhaustion vulnerability in multiple products
systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace.
local
low complexity
systemd-project
fedoraproject
CWE-400
5.5
5.5
2022-11-23
CVE-2022-45866
Path Traversal vulnerability in multiple products
qpress before PierreLvx/qpress 20220819 and before version 11.3, as used in Percona XtraBackup and other products, allows directory traversal via ../ in a .qp file.
network
low complexity
qpress-project
fedoraproject
CWE-22
5.3
5.3
2022-11-23
CVE-2022-45149
Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL.
network
low complexity
moodle
fedoraproject
CWE-352
5.4
5.4
«
Previous
1
2
...
33
34
35
(current)
36
37
...
188
189
»
Next