fedoraproject
5,423 tracked vulnerabilities.
CVE-2020-35628
CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-28636
CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-28601
CRITICAL
CGAL - Out-of-bounds Read in Nef Polygon Parser
Mar 04, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-8296
MEDIUM
Nextcloud Server <20.0.0 - Info Disclosure
Mar 03, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-28591
MEDIUM
libslic3r 1.3.0 and Master Commit 92abbc42 - Out-of-bounds Read in AMF File AMFParserContext::endElement()
Mar 03, 2021
CVSS 6.5
EPSS 0.02
CVE-2020-27779
HIGH
GRUB2 < 2.06 - Authenticated Secure Boot Bypass via cutmem Command
Mar 03, 2021
CVSS 7.5
EPSS 0.00
CVE-2020-27749
MEDIUM
GRUB2 < 2.06 - Stack-based Buffer Overflow via Variable Name Expansion
Mar 03, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-25647
HIGH
GRUB2 < 2.06 - Out-of-bounds Write via USB Device Initialization
Mar 03, 2021
CVSS 7.6
EPSS 0.01
CVE-2020-25632
HIGH
GRUB2 < 2.06 - Use-After-Free via rmmod Dependency Handling
Mar 03, 2021
CVSS 8.2
EPSS 0.01
CVE-2020-14372
HIGH
GRUB2 < 2.06 - Secure Boot Bypass via ACPI Table Injection
Mar 03, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-35662
HIGH
SaltStack Salt < 2015.8.10 - Improper Certificate Validation
Feb 27, 2021
CVSS 7.4
EPSS 0.03
CVE-2020-28972
MEDIUM
SaltStack Salt < 3002.5 - Improper Certificate Validation in VMware Authentication
Feb 27, 2021
CVSS 5.9
EPSS 0.03
CVE-2020-28243
HIGH
SaltStack Salt < 3002.5 - Command Injection via Crafted Process Name
Feb 27, 2021
CVSS 7.8
EPSS 0.04
CVE-2020-24455
MEDIUM
TPM2 <3.0.1, <2.4.3 - Privilege Escalation
Feb 26, 2021
CVSS 6.7
EPSS 0.01
CVE-2020-11988
HIGH
Apache XmlGraphics Commons < 2.4 - Server-Side Request Forgery via XMPParser
Feb 24, 2021
CVSS 8.2
EPSS 0.07
CVE-2020-11987
HIGH
Apache Batik < 1.13 - Server-Side Request Forgery via NodePickerPanel
Feb 24, 2021
CVSS 8.2
EPSS 0.14
CVE-2020-28599
HIGH
OpenSCAD < 2021.01 - Stack-based Buffer Overflow in STL File Import
Feb 24, 2021
CVSS 7.8
EPSS 0.02
CVE-2020-28463
MEDIUM
reportlab < 3.5.55 - Server-Side Request Forgery via IMG Tag
Feb 18, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-8625
HIGH
BIND 9.5.0-9.11.27, 9.12.0-9.16.11, 9.17.0-9.17.1 - Buffer Overflow via GSS-TSIG Configuration
Feb 17, 2021
CVSS 8.1
EPSS 0.64
CVE-2020-35498
HIGH
openvswitch 2.5.0-2.5.11 - Denial of Service via Crafted Packet Megaflow Width
Feb 11, 2021
CVSS 7.5
EPSS 0.08
CVE-2020-13578
HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03
CVE-2020-13577
HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03
CVE-2020-13576
CRITICAL
gSOAP 2.8.107 - Remote Code Execution via WS-Addressing Plugin
Feb 10, 2021
CVSS 9.8
EPSS 0.06
CVE-2020-13575
HIGH
gSOAP 2.8.107 - Denial of Service via WS-Addressing Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-13574
HIGH
Genivia gSOAP 2.8.107 - Denial of Service via WS-Security Plugin
Feb 10, 2021
CVSS 7.5
EPSS 0.03
Products
fedora 5,353
extra_packages_for_enterprise_linux 76
389_directory_server 39
sssd 19
fedora_core 8
389_administration_server 1
anaconda 1
arm_installer 1
commons 1
coolkey 1
crypto-utils 1
fedmsg 1
fedora_linux_kernel 1
python-fedora 1
sectool 1
selinux-policy 1
spin-kickstarts 1
supybot-fedora 1
unbound 1
Quick Filters