VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-02-16
CVE-2022-0613
Authorization Bypass Through User-Controlled Key vulnerability in multiple products
Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8.
network
low complexity
uri-js-project
fedoraproject
CWE-639
6.5
6.5
2022-02-14
CVE-2022-0571
Cross-site Scripting (XSS) - Reflected in GitHub repository phoronix-test-suite/phoronix-test-suite prior to 10.8.2.
network
low complexity
phoronix-media
fedoraproject
6.1
6.1
2022-02-12
CVE-2022-0108
Origin Validation Error vulnerability in multiple products
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-346
6.5
6.5
2022-02-12
CVE-2022-0109
Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page.
network
low complexity
google
fedoraproject
6.5
6.5
2022-02-12
CVE-2022-0110
Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products
Incorrect security UI in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-1021
4.3
4.3
2022-02-12
CVE-2022-0111
Origin Validation Error vulnerability in multiple products
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-346
6.5
6.5
2022-02-12
CVE-2022-0112
Incorrect security UI in Browser UI in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to display missing URL or incorrect URL via a crafted URL.
network
low complexity
google
fedoraproject
4.3
4.3
2022-02-12
CVE-2022-0113
Origin Validation Error vulnerability in multiple products
Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-346
6.5
6.5
2022-02-12
CVE-2022-0116
Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google
fedoraproject
4.3
4.3
2022-02-12
CVE-2022-0117
Incorrect Authorization vulnerability in multiple products
Policy bypass in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-863
6.5
6.5
«
Previous
1
2
...
60
61
62
(current)
63
64
...
186
187
»
Next