fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-2850 MEDIUM
389-ds-base - Denial of Service
Oct 14, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42722 MEDIUM
Linux Kernel 5.8-5.19.x - Denial of Service via WLAN Frame Injection in mac80211 Beacon Protection
Oct 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42721 MEDIUM
Linux Kernel 5.1-5.19.x - Remote Code Execution via BSS Handling in mac80211 Stack
Oct 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-42720 HIGH
Linux Kernel 5.1-5.19.x - Use-After-Free in mac80211 Multi-BSS Handling
Oct 14, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-41674 HIGH
Linux kernel <5.19.16 - Buffer Overflow
Oct 14, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-42719 HIGH
Linux Kernel 5.2-5.19.x - Use-After-Free in mac80211 Multi-BSSID Element Parser
Oct 13, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-3171 MEDIUM
Google Protobuf < 3.21.7, 3.20.3, 3.19.6, 3.16.3 - Denial of Service via Binary Data Parsing
Oct 12, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-39283 MEDIUM
FreeRDP < 2.8.1 - Out-of-bounds Read via Video Command Line Switch
Oct 12, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-39282 LOW
FreeRDP < 2.8.1 - Uninitialized Data Exposure via Parallel Port Redirection
Oct 12, 2022
CVSS 3.5
EPSS 0.00
CVE-2022-3140 MEDIUM
LibreOffice <7.4.1 and <7.3.6 - Macro Execution via Office URI Scheme
Oct 11, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-41032 HIGH
NuGet Client - Privilege Escalation
Oct 11, 2022
CVSS 7.8
EPSS 0.20
CVE-2022-33748 MEDIUM
Xen >= 4.0 - Denial of Service via Lock Order Inversion in Transitive Grant Copy Handling
Oct 11, 2022
CVSS 5.6
EPSS 0.00
CVE-2022-33747 LOW
Xen - Unbounded Memory Consumption via P2M Mapping Manipulation
Oct 11, 2022
CVSS 3.8
EPSS 0.00
CVE-2022-33746 MEDIUM
Xen 4.13.0-4.16.0 - Denial of Service via P2M Pool Freeing
Oct 11, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42012 MEDIUM
Freedesktop Dbus < 1.12.24 - Improper Input Validation
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42011 MEDIUM
Freedesktop Dbus < 1.12.24 - Improper Array Index Validation
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-42010 MEDIUM
Freedesktop Dbus < 1.12.24 - Signature Verification Bypass
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-3435 MEDIUM
Linux Kernel - Out-of-Bounds Read in IPv4 Handler fib_nh_match
Oct 08, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-3275 HIGH
Puppetlabs-apt <9.0.0 - Command Injection
Oct 07, 2022
CVSS 8.4
EPSS 0.03
CVE-2022-2929 MEDIUM
ISC DHCP 1.0-4.4.3 and 4.1-ESV-R1-4.1-ESV-R16-P1 - Denial of Service via Oversized FQDN Labels
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-2928 MEDIUM
ISC DHCP 4.4.0-4.4.3 and 4.1-ESV-R1-4.1-ESV-R16-P1 - Denial of Service via Reference Counter Overflow
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41556 HIGH
lighttpd 1.4.56-1.4.66 - Denial of Service via RDHUP Mishandling in HTTP/1.1 Chunked Requests
Oct 06, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-40316 MEDIUM
moodle 3.9.0-3.9.16 - Missing Authorization in H5P Activity Attempts Report
Sep 30, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-40315 CRITICAL
moodle 3.9.0-3.9.16 - SQL Injection in User Browse Page
Sep 30, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-40313 HIGH
moodle 3.9.0-3.9.16 - Cross-Site Scripting via Mustache Template Helper Recursive Rendering
Sep 30, 2022
CVSS 7.1
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV