fedoraproject

5,420 tracked vulnerabilities.

CVE-2023-39364 LOW
Cacti 1.2.24 - Open Redirect via auth_changepassword.php ref Parameter
Sep 05, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-39362 HIGH
Cacti < 1.2.25 - Authenticated Remote Code Execution via SNMP Device Options
Sep 05, 2023
CVSS 7.2
EPSS 0.87
CVE-2023-39358 HIGH
Cacti < 1.2.25 - Authenticated SQL Injection via reports_user.php tree_id Parameter
Sep 05, 2023
CVSS 8.8
EPSS 0.04
CVE-2023-39357 HIGH
Cacti - Authenticated SQL Injection and Remote Code Execution via sql_save Function
Sep 05, 2023
CVSS 8.8
EPSS 0.03
CVE-2023-30534 MEDIUM NUCLEI
Cacti < 1.2.25 - Insecure Deserialization in graphs_new.php
Sep 05, 2023
CVSS 4.3
EPSS 0.55
CVE-2023-39515 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Data Source Path
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39514 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Data Source or Device Name
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39513 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Data Query Template Path
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39512 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Device Name Configuration
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39510 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via Device Name Configuration
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39366 MEDIUM
Cacti 1.2.0-1.2.24 - Authenticated Stored Cross-Site Scripting via Device Name Configuration
Sep 05, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39361 CRITICAL NUCLEI
Cacti - Unauthenticated SQL Injection via graph_view.php
Sep 05, 2023
CVSS 9.8
EPSS 0.92
CVE-2023-39360 MEDIUM
Cacti < 1.2.25 - Authenticated Stored Cross-Site Scripting via graphs_new.php returnto Parameter
Sep 05, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-39359 HIGH
Cacti < 1.2.25 - Authenticated SQL Injection via site_id Parameter
Sep 05, 2023
CVSS 8.8
EPSS 0.05
CVE-2023-41909 HIGH
FRRouting < 9.0 - Denial of Service via NULL Pointer Dereference in BGP FlowSpec Parser
Sep 05, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4752 HIGH
vim < 9.0.1858 - Use-After-Free
Sep 04, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-4750 HIGH
vim < 9.0.1857 - Use-After-Free
Sep 04, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-4733 HIGH
macOS < 14.1 - Use-After-Free
Sep 04, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-36328 CRITICAL
libtommath <beba892bc0d4e4ded4d667ab1d2a94f4d75109a9 - RCE/DoS
Sep 01, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-40569 MEDIUM
FreeRDP <2.11.0, <3.0.0-beta3 - Buffer Overflow
Aug 31, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-40567 MEDIUM
FreeRDP <2.11.0, <3.0.0-beta3 - Memory Corruption
Aug 31, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-40188 MEDIUM
FreeRDP < 2.11.0 - Out-of-Bounds Read in general_LumaToYUV444
Aug 31, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-40186 MEDIUM
FreeRDP < 2.11.0 - Integer Overflow to Out-of-Bounds Write in gdi_CreateSurface
Aug 31, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-40181 MEDIUM
FreeRDP < 2.11.0 - Integer Underflow in zgfx_decompress_segment
Aug 31, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-39356 MEDIUM
FreeRDP < 2.11.0 - Out-of-Bounds Read in gdi_multi_opaque_rect
Aug 31, 2023
CVSS 5.3
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV