fedoraproject

5,423 tracked vulnerabilities.

CVE-2021-30155 MEDIUM
MediaWiki <1.35.2 - Privilege Escalation
Apr 09, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-30152 MEDIUM
MediaWiki <1.31.13, 1.32-1.35.1 - Privilege Escalation
Apr 09, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-3482 MEDIUM
exiv2 <= 0.27.4-RC1 - Heap-Based Buffer Overflow via JPG EXIF Data
Apr 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-3448 MEDIUM
dnsmasq < 2.85 - DNS Cache Poisoning via Fixed Port Query Forwarding
Apr 08, 2021
CVSS 4.0
EPSS 0.02
CVE-2021-29154 HIGH
Linux Kernel < 5.11.12 - Remote Code Execution via BPF JIT Branch Displacement
Apr 08, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-30184 HIGH
GNU Chess 6.2.7 - Remote Code Execution via Crafted PGN Data
Apr 07, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-30178 MEDIUM
Linux kernel <5.11.11 - Null Pointer Dereference
Apr 07, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-29424 HIGH
Net::Netmask <2.0000 - Info Disclosure
Apr 06, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-28658 MEDIUM
Django 2.2-2.2.19, 3.0-3.0.13, 3.1-3.1.7 - Path Traversal via Multipart File Upload
Apr 06, 2021
CVSS 5.3
EPSS 0.04
CVE-2021-30158 MEDIUM
MediaWiki <1.35.2 - Info Disclosure
Apr 06, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-30157 MEDIUM
MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Stored Cross-Site Scripting in ChangesList Filter Labels
Apr 06, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-30154 MEDIUM
MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Cross-Site Scripting via Special:NewFiles
Apr 06, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-20307 CRITICAL
libpano13 < 2.9.19 - Format String Vulnerability in panoFileOutputNamesCreate()
Apr 05, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-20305 HIGH
Nettle < 3.7.2 - Incorrect Signature Verification via Out-of-Range ECC Scalar
Apr 05, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-1871 CRITICAL KEV
iPadOS < 14.4 - Remote Code Execution
Apr 02, 2021
CVSS 9.8
EPSS 0.07
CVE-2021-1870 CRITICAL KEV
iPadOS < 14.4 - Remote Code Execution
Apr 02, 2021
CVSS 9.8
EPSS 0.08
CVE-2021-1844 HIGH
Safari < 14.0.3 - Remote Code Execution via Malicious Web Content
Apr 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-1801 MEDIUM
iPadOS < 14.4 - Sandbox Policy Bypass via Malicious Web Content
Apr 02, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-1799 MEDIUM
Safari < 14.0.3 - Port Redirection via Malicious Website
Apr 02, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-1789 HIGH KEV
iPadOS < 14.4 - Remote Code Execution via Type Confusion
Apr 02, 2021
CVSS 8.8
EPSS 0.15
CVE-2021-1788 HIGH
iPadOS < 14.4 - Use-After-Free via Malicious Web Content
Apr 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-1765 MEDIUM
macOS 10.14-10.14.5 and 11.0-11.1 - Iframe Sandbox Policy Bypass
Apr 02, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29421 HIGH
pikepdf 1.3.0-2.9.2 - XML External Entity Injection in XMP Metadata Parser
Apr 01, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3447 MEDIUM
Red Hat Ansible < 1.2.2 and Ansible Tower < 3.8.2 - Sensitive Information Exposure in Log Files
Apr 01, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-22890 LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.03