VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-03-08
CVE-2024-23263
A logic issue was addressed with improved validation.
network
low complexity
apple
wpewebkit
webkitgtk
fedoraproject
6.5
6.5
2024-03-08
CVE-2024-23280
Injection vulnerability in multiple products
An injection issue was addressed with improved validation.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
CWE-74
6.5
6.5
2024-03-08
CVE-2024-23284
A logic issue was addressed with improved state management.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
6.5
6.5
2024-02-29
CVE-2024-24246
Out-of-bounds Write vulnerability in multiple products
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.
local
low complexity
qpdf-project
fedoraproject
CWE-787
5.5
5.5
2024-02-28
CVE-2024-27285
Cross-site Scripting vulnerability in multiple products
YARD is a Ruby Documentation tool.
network
low complexity
yardoc
fedoraproject
debian
CWE-79
6.1
6.1
2024-02-26
CVE-2024-24568
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf
fedoraproject
5.3
5.3
2024-02-24
CVE-2024-21501
Versions of the package sanitize-html before 2.12.1 are vulnerable to Information Exposure when used on the backend and with the style attribute allowed, allowing enumeration of files in the system (including project dependencies).
network
low complexity
apostrophecms
fedoraproject
5.3
5.3
2024-02-23
CVE-2024-25629
Out-of-bounds Read vulnerability in multiple products
c-ares is a C library for asynchronous DNS requests.
local
low complexity
c-ares
fedoraproject
CWE-125
5.5
5.5
2024-02-22
CVE-2023-52160
Improper Authentication vulnerability in multiple products
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass.
network
low complexity
debian
redhat
fedoraproject
w1-fi
CWE-287
6.5
6.5
2024-02-21
CVE-2023-42843
Authentication Bypass by Spoofing vulnerability in multiple products
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple
fedoraproject
wpewebkit
webkitgtk
CWE-290
4.3
4.3
«
Previous
1
2
...
4
5
6
(current)
7
8
...
188
189
»
Next