fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-39369 HIGH
phpCAS <1.6.0 - Account Access via Host Header Service URL Confusion
Nov 01, 2022
CVSS 8.0
EPSS 0.01
CVE-2022-42327 HIGH
Xen - Unintended Memory Sharing Between Guests via xAPIC Page Access
Nov 01, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-42326 MEDIUM
Xen >=4.9.0 - Use-After-Free in Xenstore Node Transaction Handling
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42325 MEDIUM
Xen >= 4.9.0 - Use-After-Free in Xenstore Node Transaction Handling
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42324 MEDIUM
Xen - Denial of Service via Oxenstored 32->31 Bit Integer Truncation
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42323 MEDIUM
Xen - Use-After-Free via Xenstore Node Ownership Transfer
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42322 MEDIUM
Xen - Use-After-Free via Xenstore Node Ownership Transfer
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42321 MEDIUM
Xen - Denial of Service via Xenstore Recursion Stack Exhaustion
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42320 HIGH
Xen - Unauthorized Xenstore Node Access via Stale Domain ID Reuse
Nov 01, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-42319 MEDIUM
Xen >= 4.9.0 - Denial of Service via Xenstore Memory Leak
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42318 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42317 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42316 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation Exhaustion
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42315 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42314 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42313 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42312 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42311 MEDIUM
Xen - Denial of Service via Xenstore Memory Allocation
Nov 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42310 MEDIUM
Xen 4.9.0-4.12.x - Incomplete Cleanup of Orphaned Xenstore Nodes
Nov 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42309 HIGH
Xen - Denial of Service via Xenstore Node Creation Error Path
Nov 01, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-40617 HIGH
strongSwan < 5.9.8 - Denial of Service in Revocation Plugin via Malicious CRL/OCSP URL
Oct 31, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-44020 MEDIUM
OpenStack Sushy-Tools <0.21.0-VirtualBMC <2.2.2 - Info Disclosure
Oct 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42915 HIGH
curl 7.77.0-7.85.0 - Double Free via HTTP Proxy CONNECT Error Handling
Oct 29, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-41974 HIGH
multipath-tools 0.7.0-0.9.1 - Local Privilege Escalation via Repeated Keyword
Oct 29, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-41973 HIGH
multipath-tools 0.7.7-0.9.1 - Local Privilege Escalation via Symlink Attack
Oct 29, 2022
CVSS 7.8
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV