fedoraproject

5,420 tracked vulnerabilities.

CVE-2024-5833 HIGH
Google Chrome < 126.0.6478.54 - Type Confusion in V8 via Crafted HTML Page
Jun 11, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5832 HIGH
Google Chrome < 126.0.6478.54 - Use-After-Free in Dawn via Crafted HTML Page
Jun 11, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5831 HIGH
Google Chrome < 126.0.6478.54 - Use-After-Free in Dawn via Crafted HTML Page
Jun 11, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5830 HIGH
Google Chrome < 126.0.6478.54 - Type Confusion in V8 via Crafted HTML Page
Jun 11, 2024
CVSS 8.8
EPSS 0.06
CVE-2024-4577 CRITICAL KEVNUCLEI
PHP CGI Argument Injection Remote Code Execution
Jun 09, 2024
CVSS 9.8
EPSS 0.94
CVE-2024-2408 MEDIUM
PHP >=8.1.0 <8.1.29 - Observable Discrepancy via OpenSSL PKCS1 Padding
Jun 09, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-5585 HIGH
PHP <8.1.29, 8.2.*<8.2.20, 8.3.*<8.3.8 - Command Injection
Jun 09, 2024
CVSS 7.7
EPSS 0.01
CVE-2024-5458 MEDIUM
PHP 8.1.* < 8.1.29, 8.2.* < 8.2.20, 8.3.* < 8.3.8 - Insufficient Verification of Data Authenticity in URL Validation
Jun 09, 2024
CVSS 5.3
EPSS 0.04
CVE-2024-5499 HIGH
Chrome < 125.0.6422.141 - Remote Code Execution via Streams API Out-of-Bounds Write
May 30, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5498 HIGH
Google Chrome < 125.0.6422.141 - Use-After-Free in Presentation API
May 30, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5497 HIGH
Google Chrome < 125.0.6422.141 - Out-of-bounds Read in Browser UI
May 30, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5496 HIGH
Google Chrome < 125.0.6422.141 - Use-After-Free in Media Session
May 30, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5495 HIGH
Google Chrome < 125.0.6422.141 - Use-After-Free in Dawn via Crafted HTML Page
May 30, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5494 HIGH
Google Chrome < 125.0.6422.141 - Use-After-Free in Dawn via Crafted HTML Page
May 30, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5493 HIGH
Google Chrome < 125.0.6422.141 - Heap-based Buffer Overflow in WebRTC
May 30, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-35200 MEDIUM
NGINX OSS >=1.25.0 <1.26.1 and NGINX Plus - Denial of Service via HTTP/3 QUIC Module
May 29, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-34161 MEDIUM
NGINX OSS >=1.25.0 <1.26.1 and NGINX Plus - Use-After-Free via HTTP/3 QUIC Packet Handling
May 29, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-32760 MEDIUM
NGINX OSS >=1.25.0 <1.26.1 and NGINX Plus - Out-of-bounds Write via HTTP/3 QUIC Module
May 29, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-31079 MEDIUM
NGINX OSS >=1.25.0 <1.26.1 and NGINX Plus - Stack-based Buffer Overflow in HTTP/3 QUIC Module
May 29, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-5274 CRITICAL KEV
Google Chrome < 125.0.6422.112 - Remote Code Execution via V8 Type Confusion
May 28, 2024
CVSS 9.6
EPSS 0.07
CVE-2024-5160 HIGH
Google Chrome <125.0.6422.76 - Buffer Overflow
May 22, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5159 HIGH
Google Chrome <125.0.6422.76 - Buffer Overflow
May 22, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5158 HIGH
Google Chrome < 125.0.6422.76 - Type Confusion in V8 via Crafted HTML Page
May 22, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-5157 HIGH
Google Chrome <125.0.6422.76 - Use After Free
May 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-35949 HIGH
Linux Kernel < 6.6.85 - Out-of-bounds Write in Btrfs Metadata Block Handling
May 20, 2024
CVSS 7.8
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV