fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-2309 HIGH
lxml < 4.9.1 - Denial of Service via iterwalk Function
Jul 05, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-2289 HIGH
vim < 9.0.0026 - Use-After-Free
Jul 03, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2288 HIGH
vim < 9.0.0025 - Out-of-bounds Write
Jul 03, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2287 HIGH
vim < 9.0.0021 - Out-of-bounds Read
Jul 02, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-34912 MEDIUM
MediaWiki < 1.37.3 and 1.38.x < 1.38.1 - Cross-Site Scripting in Special:Contributions Page Title
Jul 02, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-34911 MEDIUM
MediaWiki < 1.35.7, 1.36.x-1.37.x < 1.37.3, 1.38.x < 1.38.1 - Cross-Site Scripting via Username in Account Creation
Jul 02, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-2286 HIGH
vim < 9.0.0020 - Out-of-bounds Read
Jul 02, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2285 HIGH
vim < 9.0.0018 - Integer Overflow or Wraparound
Jul 02, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2284 HIGH
vim < 9.0.0017 - Heap-based Buffer Overflow
Jul 02, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-34903 MEDIUM
GnuPG < 2.3.6 - Signature Forgery via Status Line Injection
Jul 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-32325 MEDIUM
jpegoptim 1.4.7 - Out-of-bounds Read in jpegoptim.c
Jul 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-32091 HIGH
MariaDB 10.3.0-10.3.35 - Use-After-Free in memset Interceptor
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-32089 HIGH
MariaDB 10.4.0-10.4.25 - Denial of Service via st_select_lex_unit::exclude_level
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-32084 HIGH
MariaDB 10.3.0-10.3.35 - Denial of Service via sub_select Component
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-32082 HIGH
MariaDB 10.5.0-10.5.16 - Reachable Assertion in dict0dict.cc
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-32081 HIGH
MariaDB 10.4.0-10.4.25 - Use-After-Free in prepare_inplace_add_virtual
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-33099 HIGH
Lua 5.4.2-5.4.4 - Heap-Based Buffer Overflow in luaG_runerror
Jul 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-2264 HIGH
vim < 9.0.0011 - Heap-based Buffer Overflow
Jul 01, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2257 HIGH
vim < 9.0.0009 - Out-of-bounds Read
Jun 30, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2058 MEDIUM
libtiff 4.4.0 - Denial of Service via Crafted TIFF File
Jun 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2057 MEDIUM
libtiff 4.4.0 - Denial of Service via Divide By Zero in tiffcrop
Jun 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2056 MEDIUM
libtiff 4.4.0 - Denial of Service via Crafted TIFF File
Jun 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2231 MEDIUM
vim < 8.2.5169 - NULL Pointer Dereference
Jun 28, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-31052 MEDIUM
Synapse < 1.61.1 - Denial of Service via URL Preview Recursion
Jun 28, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-2210 HIGH
vim < 8.2.5164 - Out-of-bounds Write
Jun 27, 2022
CVSS 7.8
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV