fedoraproject

5,423 tracked vulnerabilities.

CVE-2021-21165 HIGH
Google Chrome <89.0.4389.72 - Heap Corruption
Mar 09, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21164 MEDIUM
Google Chrome <89.0.4389.72 - Info Disclosure
Mar 09, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21163 MEDIUM
Google Chrome <89.0.4389.72 - Info Disclosure
Mar 09, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-21162 HIGH
Google Chrome <89.0.4389.72 - Use After Free
Mar 09, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21161 HIGH
Google Chrome <89.0.4389.72 - Buffer Overflow
Mar 09, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-21160 HIGH
Google Chrome <89.0.4389.72 - Buffer Overflow
Mar 09, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-21159 HIGH
Google Chrome <89.0.4389.72 - Buffer Overflow
Mar 09, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-23351 MEDIUM
go-proxyproto < 0.5.0 - Denial of Service via parseVersion1() Function
Mar 08, 2021
CVSS 4.4
EPSS 0.02
CVE-2021-3420 CRITICAL
newlib < 4.0.0 - Heap-Based Buffer Overflow via Integer Overflow in Memory Allocation Functions
Mar 05, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-28041 HIGH
ssh-agent <8.5 - Use After Free
Mar 05, 2021
CVSS 7.1
EPSS 0.03
CVE-2021-3404 HIGH
ytnef 1.9.3 - Heap Buffer Overflow via Crafted File
Mar 04, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-3403 HIGH
ytnef 1.9.3 - Double Free in TNEFSubjectHandler
Mar 04, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-22884 HIGH
Node.js <10.24.0, 12.21.0, 14.16.0, 15.10.0 - Info Disclosure
Mar 03, 2021
CVSS 7.5
EPSS 0.32
CVE-2021-22883 HIGH
Node.js <10.24.0,12.21.0,14.16.0,15.10.0 - DoS
Mar 03, 2021
CVSS 7.5
EPSS 0.77
CVE-2021-22878 MEDIUM
Nextcloud Server < 20.0.6 - Reflected Cross-Site Scripting via OC.Notification.show
Mar 03, 2021
CVSS 4.8
EPSS 0.01
CVE-2021-22877 MEDIUM
Nextcloud <20.0.6 - Info Disclosure
Mar 03, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-20233 HIGH
GRUB2 < 2.06 - Out-of-bounds Write via Menu Rendering
Mar 03, 2021
CVSS 8.2
EPSS 0.01
CVE-2021-20225 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Option Parser
Mar 03, 2021
CVSS 6.7
EPSS 0.01
CVE-2021-26813 HIGH
markdown2 >=1.0.1.18 <2.4.0 - Denial of Service via Inefficient Regular Expression
Mar 03, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-27923 HIGH
Pillow < 8.1.2 - Denial of Service via ICO Image Size Mismatch
Mar 03, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-27922 HIGH
Pillow < 8.1.2 - Denial of Service via ICNS Container Memory Allocation
Mar 03, 2021
CVSS 7.5
EPSS 0.05
CVE-2021-27921 HIGH
Pillow < 8.1.2 - Denial of Service via BLP Image Size Mismatch
Mar 03, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-3197 CRITICAL
Salt < 2015.8.10 - Injection
Feb 27, 2021
CVSS 9.8
EPSS 0.72
CVE-2021-3148 CRITICAL
SaltStack Salt < 3002.5 - Command Injection via Thin Generation
Feb 27, 2021
CVSS 9.8
EPSS 0.08
CVE-2021-3144 CRITICAL
SaltStack Salt < 2015.8.10 - Insufficient Session Expiration
Feb 27, 2021
CVSS 9.1
EPSS 0.05