fedoraproject
5,423 tracked vulnerabilities.
CVE-2021-25284
MEDIUM
SaltStack Salt <3002.5 - Info Disclosure
Feb 27, 2021
CVSS 4.4
EPSS 0.01
CVE-2021-25283
CRITICAL
SaltStack Salt <3002.5 - Code Injection
Feb 27, 2021
CVSS 9.8
EPSS 0.10
CVE-2021-25282
CRITICAL
SaltStack Salt <3002.5 - Path Traversal
Feb 27, 2021
CVSS 9.1
EPSS 0.92
CVE-2021-25281
CRITICAL
NUCLEI
SaltStack Salt < 3002.5 - Unauthenticated Remote Command Execution via wheel_async Client
Feb 27, 2021
CVSS 9.8
EPSS 0.73
CVE-2021-27803
HIGH
wpa_supplicant 1.0-2.9 - Denial of Service or Remote Code Execution via P2P Provision Discovery Request
Feb 26, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-21274
MEDIUM
Synapse 0.99.0-1.24.9 - Denial of Service via .well-known File Redirection
Feb 26, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-21273
LOW
Synapse < 1.25.0 - Server-Side Request Forgery via Third-Party Invite Events and Push Notifications
Feb 26, 2021
CVSS 3.1
EPSS 0.02
CVE-2021-21330
LOW
aiohttp < 3.7.4 - Open Redirect via normalize_path_middleware
Feb 26, 2021
CVSS 3.1
EPSS 0.02
CVE-2021-26701
HIGH
.NET Core 2.1 < 2.1.28 and .NET 5.0 < 5.0.4 - Remote Code Execution
Feb 25, 2021
CVSS 8.1
EPSS 0.30
CVE-2021-3406
CRITICAL
keylime < 5.8.1 - Improper Certificate Validation
Feb 25, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-20203
LOW
QEMU < 5.2.0 - Denial of Service via vmxnet3 NIC Parameter Integer Overflow
Feb 25, 2021
CVSS 3.2
EPSS 0.01
CVE-2021-27645
LOW
GNU C Library <2.34 - Use After Free
Feb 24, 2021
CVSS 2.5
EPSS 0.00
CVE-2021-3410
HIGH
libcaca v0.99.beta19 - Buffer Overflow in caca_resize Function
Feb 23, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-3407
MEDIUM
MuPDF 1.18.0 - Double Free during Linearization
Feb 23, 2021
CVSS 5.5
EPSS 0.50
CVE-2021-3405
MEDIUM
libebml < 1.4.2 - Heap Overflow in EbmlString and EbmlUnicodeString ReadData
Feb 23, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-26927
MEDIUM
jasper < 2.0.25 - Denial of Service via Null Pointer Dereference in jp2_decode
Feb 23, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-20247
HIGH
mbsync < 1.3.5 - Path Traversal via IMAP Mailbox Name
Feb 23, 2021
CVSS 7.4
EPSS 0.02
CVE-2021-26926
HIGH
jasper < 2.0.25 - Out-of-bounds Read in jp2_decode
Feb 23, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-20229
MEDIUM
PostgreSQL < 13.2 - Unauthorized Column Access via SELECT Privilege Escalation
Feb 23, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-21157
HIGH
Google Chrome <88.0.4324.182 - Use After Free
Feb 22, 2021
CVSS 8.8
EPSS 0.09
CVE-2021-21156
HIGH
Google Chrome <88.0.4324.182 - Buffer Overflow
Feb 22, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-21155
CRITICAL
Google Chrome <88.0.4324.182 - Buffer Overflow
Feb 22, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21154
CRITICAL
Google Chrome <88.0.4324.182 - Buffer Overflow
Feb 22, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21153
HIGH
Google Chrome <88.0.4324.182 - Buffer Overflow
Feb 22, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-21152
HIGH
Google Chrome <88.0.4324.182 - Buffer Overflow
Feb 22, 2021
CVSS 8.8
EPSS 0.01
Products
fedora 5,353
extra_packages_for_enterprise_linux 76
389_directory_server 39
sssd 19
fedora_core 8
389_administration_server 1
anaconda 1
arm_installer 1
commons 1
coolkey 1
crypto-utils 1
fedmsg 1
fedora_linux_kernel 1
python-fedora 1
sectool 1
selinux-policy 1
spin-kickstarts 1
supybot-fedora 1
unbound 1
Quick Filters