fedoraproject

5,423 tracked vulnerabilities.

CVE-2021-30473 CRITICAL
AOMedia <2021-04-07 - Use After Free
May 06, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-20204 CRITICAL
getdata 0.10.0 - Use-After-Free in Dirfile Database Processing
May 06, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-3501 HIGH
Linux kernel <5.12 - Memory Corruption
May 06, 2021
CVSS 7.1
EPSS 0.00
CVE-2021-32062 MEDIUM
MapServer < 7.0.8, 7.1.x-7.2.x < 7.2.3, 7.3.x-7.4.x < 7.4.5, 7.5.x-7.6.x < 7.6.3 - Path Traversal via Mapfile Loading
May 06, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-31542 HIGH
Django 2.2-2.2.20, 3.1-3.1.8, 3.2-3.2.0 - Path Traversal via Uploaded File Name
May 05, 2021
CVSS 7.5
EPSS 0.05
CVE-2021-20254 MEDIUM
Samba >=3.6.0 <4.12.15 - Out-of-bounds Read in Group Identity Mapping
May 05, 2021
CVSS 6.8
EPSS 0.02
CVE-2021-31800 CRITICAL
Impacket < 0.9.22 - Path Traversal and Arbitrary File Write via SMB Server
May 05, 2021
CVSS 9.8
EPSS 0.19
CVE-2021-25317 LOW
SUSE Linux Enterprise Server <11-SP4-LTSS - Privilege Escalation
May 05, 2021
CVSS 3.3
EPSS 0.00
CVE-2021-29478 HIGH
Redis 6.2.0-6.2.2 - Remote Code Execution via Integer Overflow in set-max-intset-entries
May 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-29477 HIGH
Redis 6.0.0-6.0.12 - Integer Overflow via STRALGO LCS Command
May 04, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-21233 HIGH
Google Chrome <90.0.4430.93 - Buffer Overflow
Apr 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21232 HIGH
Google Chrome <90.0.4430.93 - Use After Free
Apr 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21231 HIGH
Google Chrome <90.0.4430.93 - Heap Corruption
Apr 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21230 HIGH
Google Chrome <90.0.4430.93 - Heap Corruption
Apr 30, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-21229 MEDIUM
Google Chrome < 90.0.4430.93 - Domain Spoofing via Download Security UI
Apr 30, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21228 MEDIUM
Google Chrome <90.0.4430.93 - Auth Bypass
Apr 30, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21227 HIGH
Google Chrome <90.0.4430.93 - Heap Corruption
Apr 30, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-29464 LOW
Exiv2 < 0.27.4 - Heap-based Buffer Overflow via Crafted Image File Metadata Write
Apr 30, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-29463 LOW
Exiv2 < 0.27.4 - Out-of-bounds Read via Crafted Image File
Apr 30, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-20266 MEDIUM
rpm < 4.16.1.3 - Out-of-bounds Read in hdrblobInit
Apr 30, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-25215 HIGH
BIND <9.11.30-9.17.12 - DoS
Apr 29, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-25214 MEDIUM
BIND 9.8.5-9.8.8, 9.9.3-9.11.29, 9.12.0-9.16.13, 9.17.0-9.17.11 - DoS via Malformed IXFR
Apr 29, 2021
CVSS 6.5
EPSS 0.06
CVE-2021-29472 HIGH
Composer < 1.10.22 - Remote Code Execution via Mercurial Repository URL
Apr 27, 2021
CVSS 8.8
EPSS 0.05
CVE-2021-29473 LOW
exiv2 < 0.27.4 - Out-of-bounds Read via Crafted Image File
Apr 26, 2021
CVSS 2.5
EPSS 0.02
CVE-2021-21226 CRITICAL
Google Chrome <90.0.4430.85 - Use After Free
Apr 26, 2021
CVSS 9.6
EPSS 0.01