VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-07
CVE-2023-46218
This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible.
network
low complexity
haxx
fedoraproject
6.5
6.5
2023-12-06
CVE-2023-6511
Inappropriate implementation in Autofill in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page.
network
low complexity
debian
fedoraproject
google
4.3
4.3
2023-12-06
CVE-2023-6512
Inappropriate implementation in Web Browser UI in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to potentially spoof the contents of an iframe dialog context menu via a crafted HTML page.
network
low complexity
debian
fedoraproject
google
6.5
6.5
2023-11-28
CVE-2023-5981
Information Exposure Through Discrepancy vulnerability in multiple products
A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.
network
high complexity
gnu
redhat
fedoraproject
CWE-203
5.9
5.9
2023-11-24
CVE-2023-6277
Resource Exhaustion vulnerability in multiple products
An out-of-memory flaw was found in libtiff.
network
low complexity
libtiff
fedoraproject
CWE-400
6.5
6.5
2023-11-21
CVE-2023-6238
Classic Buffer Overflow vulnerability in multiple products
A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel.
local
low complexity
linux
fedoraproject
CWE-120
6.7
6.7
2023-11-19
CVE-2023-5341
Use After Free vulnerability in multiple products
A heap use-after-free flaw was found in coders/bmp.c in ImageMagick.
local
low complexity
imagemagick
fedoraproject
CWE-416
5.5
5.5
2023-11-16
CVE-2023-48231
Use After Free vulnerability in multiple products
Vim is an open source command line text editor.
network
low complexity
vim
fedoraproject
CWE-416
4.3
4.3
2023-11-16
CVE-2023-48232
Improper Handling of Exceptional Conditions vulnerability in multiple products
Vim is an open source command line text editor.
network
low complexity
vim
fedoraproject
CWE-755
4.3
4.3
2023-11-16
CVE-2023-48233
Integer Overflow or Wraparound vulnerability in multiple products
Vim is an open source command line text editor.
network
low complexity
vim
fedoraproject
CWE-190
4.3
4.3
«
Previous
1
2
...
3
4
5
(current)
6
7
...
221
222
»
Next