fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-34749 HIGH
mistune < 2.0.2 - Inefficient Regular Expression Complexity
Jul 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35653 MEDIUM NUCLEI
Moodle 3.9.0-3.9.14 and 4.0.0-4.0.1 - Reflected Cross-Site Scripting in LTI Module
Jul 25, 2022
CVSS 6.1
EPSS 0.84
CVE-2022-35652 MEDIUM
Moodle 3.9.0-3.9.14 and 4.0-4.0.1 - Open Redirect via Mobile Auto-Login Feature
Jul 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-35651 MEDIUM
Moodle 3.9.0-3.9.14 - Stored Cross-Site Scripting and Blind Server-Side Request Forgery in SCORM Track Details
Jul 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-35650 HIGH
Moodle 3.9.0-3.9.14 - Authenticated Path Traversal via Lesson Question Import
Jul 25, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-35649 CRITICAL
Moodle - Remote Code Execution via Ghostscript PostScript Parsing
Jul 25, 2022
CVSS 9.8
EPSS 0.07
CVE-2022-0670 CRITICAL
Openstack manilla - Info Disclosure
Jul 25, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-31160 MEDIUM
jQuery UI < 1.13.2 - Cross-Site Scripting via Checkboxradio Widget Refresh
Jul 20, 2022
CVSS 6.1
EPSS 0.08
CVE-2022-21549 MEDIUM
Oracle Java SE <17.0.3.1 & Oracle GraalVM EE <22.1.0 - Unauthentica...
Jul 19, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-21541 MEDIUM
Oracle Java SE <17.0.3.1 - Info Disclosure
Jul 19, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-21540 MEDIUM
Oracle Java SE <17.0.3.1 - Unauthenticated RCE
Jul 19, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-21537 MEDIUM
MySQL Server < 8.0.29 - Authenticated Denial of Service in InnoDB
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21534 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Stored Procedure
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21531 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Server Optimizer
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21530 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Optimizer
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21529 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Server Optimizer
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21528 MEDIUM
MySQL Server < 8.0.29 - Authenticated Denial of Service and Data Manipulation via Optimizer
Jul 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21527 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service and Data Manipulation in Optimizer
Jul 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21526 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Server Optimizer
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21525 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Server Optimizer
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21522 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Stored Procedure
Jul 19, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-21517 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in InnoDB
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21515 MEDIUM
MySQL Server <= 5.7.38 and <= 8.0.29 - Authenticated Denial of Service in Server Options
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21509 MEDIUM
MySQL Server < 8.0.29 - Authenticated Denial of Service and Data Manipulation via Optimizer
Jul 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2476 MEDIUM
wavpack 5.4.0 - Null Pointer Dereference in wvunpack
Jul 19, 2022
CVSS 5.5
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV