fedoraproject

5,420 tracked vulnerabilities.

CVE-2023-4806 MEDIUM
glibc - Use-After-Free in getaddrinfo with NSS Module Hooks
Sep 18, 2023
CVSS 5.9
EPSS 0.02
CVE-2023-4527 MEDIUM
glibc >=2.36 <2.36.113 - Stack-based Buffer Overflow via getaddrinfo DNS Response
Sep 18, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-43115 HIGH
Artifex Ghostscript <= 10.01.2 - Remote Code Execution via IJS Device Parameter Manipulation
Sep 18, 2023
CVSS 8.8
EPSS 0.22
CVE-2023-38039 HIGH
curl 7.84.0-8.2.0 - Denial of Service via Unbounded HTTP Response Header Storage
Sep 15, 2023
CVSS 7.5
EPSS 0.14
CVE-2023-4155 MEDIUM
Linux Kernel - Denial of Service via KVM AMD SEV VMGEXIT Handler Race Condition
Sep 13, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-3255 MEDIUM
QEMU < 8.0.3 - Authenticated Denial of Service via VNC ClientCutText Message Handling
Sep 13, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4813 MEDIUM
glibc < 2.36 - Use-After-Free in gaih_inet Function
Sep 12, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-4909 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Obfuscation via Crafted HTML Page
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4908 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Spoofing via Picture in Picture
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4907 MEDIUM
Google Chrome <117.0.5938.62 - Info Disclosure
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4906 MEDIUM
Google Chrome <117.0.5938.62 - Auth Bypass
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4905 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Spoofing via Crafted HTML Page
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4904 MEDIUM
Google Chrome <117.0.5938.62 - Auth Bypass
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4903 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Spoofing via Custom Mobile Tabs
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4902 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Spoofing via Crafted HTML Page
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4901 MEDIUM
Google Chrome < 117.0.5938.62 - Security UI Spoofing via Crafted HTML Page
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4900 MEDIUM
Google Chrome < 117.0.5938.62 - Permission Prompt Obfuscation via Custom Tabs
Sep 12, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-4863 HIGH KEV
Google Chrome <116.0.5845.187 - Buffer Overflow
Sep 12, 2023
CVSS 8.8
EPSS 0.93
CVE-2023-40032 MEDIUM
Fedora < 8.14.4 - NULL Pointer Dereference
Sep 11, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41915 HIGH
OpenPMIx < 4.2.6 and 5.0.x < 5.0.1 - Arbitrary File Ownership via Race Condition
Sep 09, 2023
CVSS 8.1
EPSS 0.01
CVE-2023-39511 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Device Name in reports_admin.php
Sep 06, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-4762 HIGH KEV
Google Chrome < 116.0.5845.179 - Remote Code Execution via V8 Type Confusion
Sep 05, 2023
CVSS 8.8
EPSS 0.56
CVE-2023-4761 HIGH
Google Chrome < 116.0.5845.179 - Out-of-bounds Read in FedCM
Sep 05, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-39516 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Data Source Path Configuration
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39365 MEDIUM
Cacti < 1.2.25 - SQL Injection via External Links Feature
Sep 05, 2023
CVSS 4.6
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV