fedoraproject
5,423 tracked vulnerabilities.
CVE-2021-30155
MEDIUM
MediaWiki <1.35.2 - Privilege Escalation
Apr 09, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-30152
MEDIUM
MediaWiki <1.31.13, 1.32-1.35.1 - Privilege Escalation
Apr 09, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-3482
MEDIUM
exiv2 <= 0.27.4-RC1 - Heap-Based Buffer Overflow via JPG EXIF Data
Apr 08, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-3448
MEDIUM
dnsmasq < 2.85 - DNS Cache Poisoning via Fixed Port Query Forwarding
Apr 08, 2021
CVSS 4.0
EPSS 0.02
CVE-2021-29154
HIGH
Linux Kernel < 5.11.12 - Remote Code Execution via BPF JIT Branch Displacement
Apr 08, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-30184
HIGH
GNU Chess 6.2.7 - Remote Code Execution via Crafted PGN Data
Apr 07, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-30178
MEDIUM
Linux kernel <5.11.11 - Null Pointer Dereference
Apr 07, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-29424
HIGH
Net::Netmask <2.0000 - Info Disclosure
Apr 06, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-28658
MEDIUM
Django 2.2-2.2.19, 3.0-3.0.13, 3.1-3.1.7 - Path Traversal via Multipart File Upload
Apr 06, 2021
CVSS 5.3
EPSS 0.04
CVE-2021-30158
MEDIUM
MediaWiki <1.35.2 - Info Disclosure
Apr 06, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-30157
MEDIUM
MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Stored Cross-Site Scripting in ChangesList Filter Labels
Apr 06, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-30154
MEDIUM
MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Cross-Site Scripting via Special:NewFiles
Apr 06, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-20307
CRITICAL
libpano13 < 2.9.19 - Format String Vulnerability in panoFileOutputNamesCreate()
Apr 05, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-20305
HIGH
Nettle < 3.7.2 - Incorrect Signature Verification via Out-of-Range ECC Scalar
Apr 05, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-1871
CRITICAL
KEV
iPadOS < 14.4 - Remote Code Execution
Apr 02, 2021
CVSS 9.8
EPSS 0.07
CVE-2021-1870
CRITICAL
KEV
iPadOS < 14.4 - Remote Code Execution
Apr 02, 2021
CVSS 9.8
EPSS 0.08
CVE-2021-1844
HIGH
Safari < 14.0.3 - Remote Code Execution via Malicious Web Content
Apr 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-1801
MEDIUM
iPadOS < 14.4 - Sandbox Policy Bypass via Malicious Web Content
Apr 02, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-1799
MEDIUM
Safari < 14.0.3 - Port Redirection via Malicious Website
Apr 02, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-1789
HIGH
KEV
iPadOS < 14.4 - Remote Code Execution via Type Confusion
Apr 02, 2021
CVSS 8.8
EPSS 0.15
CVE-2021-1788
HIGH
iPadOS < 14.4 - Use-After-Free via Malicious Web Content
Apr 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-1765
MEDIUM
macOS 10.14-10.14.5 and 11.0-11.1 - Iframe Sandbox Policy Bypass
Apr 02, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29421
HIGH
pikepdf 1.3.0-2.9.2 - XML External Entity Injection in XMP Metadata Parser
Apr 01, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3447
MEDIUM
Red Hat Ansible < 1.2.2 and Ansible Tower < 3.8.2 - Sensitive Information Exposure in Log Files
Apr 01, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-22890
LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.03
Products
fedora 5,353
extra_packages_for_enterprise_linux 76
389_directory_server 39
sssd 19
fedora_core 8
389_administration_server 1
anaconda 1
arm_installer 1
commons 1
coolkey 1
crypto-utils 1
fedmsg 1
fedora_linux_kernel 1
python-fedora 1
sectool 1
selinux-policy 1
spin-kickstarts 1
supybot-fedora 1
unbound 1
Quick Filters