fedoraproject

5,423 tracked vulnerabilities.

CVE-2023-4535 MEDIUM
OpenSC - Out-of-bounds Read in MyEID Driver Symmetric Key Encryption
Nov 06, 2023
CVSS 4.5
EPSS 0.00
CVE-2023-47272 MEDIUM
Roundcube Webmail 1.5.0-1.5.5 and 1.6.0-1.6.4 - Cross-Site Scripting via Content-Type or Content-Disposition Header
Nov 06, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-3961 CRITICAL
Samba < 4.17.12 - Path Traversal via Client Pipe Name
Nov 03, 2023
CVSS 9.1
EPSS 0.02
CVE-2023-4091 MEDIUM
Samba < 4.17.12 - Unauthorized File Truncation via SMB Overwrite Create Disposition
Nov 03, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-42670 MEDIUM
Samba < 4.17.12 - Denial of Service via Incompatible RPC Listener Competition
Nov 03, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-1194 HIGH
Linux Kernel >=5.15 <5.15.145 - Out-of-bounds Read in KSMBD Lease State Parsing
Nov 03, 2023
CVSS 7.1
EPSS 0.01
CVE-2023-44271 HIGH
Pillow < 10.0.0 - Denial of Service via Truetype Font Memory Allocation
Nov 03, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-43665 HIGH
Django <3.2.22, <4.1.12, <4.2.6 - DoS
Nov 03, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-41914 HIGH
Slurm 22.05-22.05.9 23.02-23.02.5 - Filesystem Race Condition
Nov 03, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-41164 HIGH
Django <3.2.21-<4.1.11-<4.2.5 - DoS
Nov 03, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-5859 MEDIUM
Google Chrome < 119.0.6045.105 - Domain Spoofing via Picture In Picture Security UI
Nov 01, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5858 MEDIUM
Google Chrome < 119.0.6045.105 - Security UI Obfuscation via WebApp Provider
Nov 01, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5857 HIGH
Google Chrome <119.0.6045.105 - RCE
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5856 HIGH
Google Chrome < 119.0.6045.105 - Use-After-Free in Side Panel
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5855 HIGH
Google Chrome < 119.0.6045.105 - Use-After-Free in Reading Mode
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5854 HIGH
Google Chrome < 119.0.6045.105 - Use-After-Free in Profiles
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5853 MEDIUM
Google Chrome < 119.0.6045.105 - Security UI Spoofing via Crafted HTML Page
Nov 01, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5852 HIGH
Google Chrome < 119.0.6045.105 - Use-After-Free in Printing
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5851 MEDIUM
Google Chrome < 119.0.6045.105 - Origin Validation Error in Downloads
Nov 01, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5850 MEDIUM
Google Chrome <119.0.6045.105 - CSRF
Nov 01, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-5849 HIGH
Google Chrome < 119.0.6045.105 - Integer Overflow in USB via Crafted HTML Page
Nov 01, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5482 HIGH
Google Chrome < 119.0.6045.105 - Out-of-Bounds Memory Access via USB Data Validation
Nov 01, 2023
CVSS 8.8
EPSS 0.07
CVE-2023-5480 MEDIUM
Google Chrome < 119.0.6045.105 - Cross-Site Scripting via Payments Feature
Nov 01, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-43796 MEDIUM
Synapse <1.95.1-1.96.0rc1 - Info Disclosure
Oct 31, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-5349 MEDIUM
rmagick < 5.3.0 - Memory Leak Denial of Service
Oct 30, 2023
CVSS 5.3
EPSS 0.01