VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Fedoraproject
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-06-08
CVE-2021-33203
Path Traversal vulnerability in multiple products
Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs.
network
low complexity
djangoproject
fedoraproject
CWE-22
4.9
4.9
2021-06-08
CVE-2021-23215
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
local
low complexity
openexr
fedoraproject
debian
5.5
5.5
2021-06-08
CVE-2021-26260
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
local
low complexity
openexr
fedoraproject
debian
5.5
5.5
2021-06-08
CVE-2021-3564
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device.
local
low complexity
linux
fedoraproject
debian
5.5
5.5
2021-06-07
CVE-2021-30531
Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
fedoraproject
6.5
6.5
2021-06-07
CVE-2021-30532
Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
fedoraproject
4.3
4.3
2021-06-07
CVE-2021-30533
Incorrect Authorization vulnerability in multiple products
Insufficient policy enforcement in PopupBlocker in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted iframe.
network
low complexity
google
fedoraproject
CWE-863
6.5
6.5
2021-06-07
CVE-2021-30534
Incorrect Authorization vulnerability in multiple products
Insufficient policy enforcement in iFrameSandbox in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-863
6.5
6.5
2021-06-07
CVE-2021-30537
Incorrect Authorization vulnerability in multiple products
Insufficient policy enforcement in cookies in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass cookie policy via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-863
4.3
4.3
2021-06-07
CVE-2021-30538
Incorrect Authorization vulnerability in multiple products
Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
fedoraproject
CWE-863
4.3
4.3
«
Previous
1
2
...
83
84
85
(current)
86
87
...
188
189
»
Next