fedoraproject

5,423 tracked vulnerabilities.

CVE-2020-35628 CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-28636 CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-28601 CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-8296 MEDIUM
Nextcloud Server <20.0.0 - Info Disclosure
Mar 03, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-28591 MEDIUM
libslic3r 1.3.0 and Master Commit 92abbc42 - Out-of-bounds Read in AMF File AMFParserContext::endElement()
Mar 03, 2021
CVSS 6.5
EPSS 0.02
CVE-2020-27779 HIGH
GRUB2 < 2.06 - Authenticated Secure Boot Bypass via cutmem Command
Mar 03, 2021
CVSS 7.5
EPSS 0.00
CVE-2020-27749 MEDIUM
GRUB2 < 2.06 - Stack-based Buffer Overflow via Variable Name Expansion
Mar 03, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-25647 HIGH
GRUB2 < 2.06 - Out-of-bounds Write via USB Device Initialization
Mar 03, 2021
CVSS 7.6
EPSS 0.01
CVE-2020-25632 HIGH
GRUB2 < 2.06 - Use-After-Free via rmmod Dependency Handling
Mar 03, 2021
CVSS 8.2
EPSS 0.01
CVE-2020-14372 HIGH
GRUB2 < 2.06 - Secure Boot Bypass via ACPI Table Injection
Mar 03, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-35662 HIGH
SaltStack Salt < 2015.8.10 - Improper Certificate Validation
Feb 27, 2021
CVSS 7.4
EPSS 0.03
CVE-2020-28972 MEDIUM
SaltStack Salt < 3002.5 - Improper Certificate Validation in VMware Authentication
Feb 27, 2021
CVSS 5.9
EPSS 0.03
CVE-2020-28243 HIGH
SaltStack Salt < 3002.5 - Command Injection via Crafted Process Name
Feb 27, 2021
CVSS 7.8
EPSS 0.04
CVE-2020-24455 MEDIUM
TPM2 <3.0.1, <2.4.3 - Privilege Escalation
Feb 26, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-11988 HIGH
Apache XmlGraphics Commons < 2.4 - Server-Side Request Forgery via XMPParser
Feb 24, 2021
CVSS 8.2
EPSS 0.07
CVE-2020-11987 HIGH
Apache Batik < 1.13 - Server-Side Request Forgery via NodePickerPanel
Feb 24, 2021
CVSS 8.2
EPSS 0.14
CVE-2020-28599 HIGH
OpenSCAD < 2021.01 - Stack-based Buffer Overflow in STL File Import
Feb 24, 2021
CVSS 7.8
EPSS 0.02
CVE-2020-28463 MEDIUM
reportlab < 3.5.55 - Server-Side Request Forgery via IMG Tag
Feb 18, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-8625 HIGH
BIND 9.5.0-9.11.27, 9.12.0-9.16.11, 9.17.0-9.17.1 - Buffer Overflow via GSS-TSIG Configuration
Feb 17, 2021
CVSS 8.1
EPSS 0.64
CVE-2020-35498 HIGH
openvswitch 2.5.0-2.5.11 - Denial of Service via Crafted Packet Megaflow Width
Feb 11, 2021
CVSS 7.5
EPSS 0.08
CVE-2020-13578 HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03
CVE-2020-13577 HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03
CVE-2020-13576 CRITICAL
gSOAP 2.8.107 - Remote Code Execution via WS-Addressing Plugin
Feb 10, 2021
CVSS 9.8
EPSS 0.06
CVE-2020-13575 HIGH
gSOAP 2.8.107 - Denial of Service via WS-Addressing Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-13574 HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03