fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-2208 MEDIUM
vim < 8.2.5163 - NULL Pointer Dereference
Jun 27, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2207 HIGH
vim < 8.2.5162 - Heap-based Buffer Overflow
Jun 27, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2206 HIGH
vim < 8.2.5160 - Out-of-bounds Read
Jun 26, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-32209 MEDIUM
Rails::Html::Sanitizer < 1.4.3 - Cross-Site Scripting via Select and Style Tag Override
Jun 24, 2022
CVSS 6.1
EPSS 0.05
CVE-2022-2183 HIGH
vim < 8.2.5151 - Out-of-bounds Read
Jun 23, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-2182 HIGH
vim < 8.2.5150 - Heap-based Buffer Overflow
Jun 23, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-33070 MEDIUM
protobuf-c 1.4.0 - Denial of Service via Invalid Arithmetic Shift in parse_tag_and_wiretype
Jun 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-33068 MEDIUM
Harfbuzz 4.3.0 - Denial of Service via Integer Overflow in hb-ot-shape-fallback.cc
Jun 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-29526 MEDIUM
GO < 1.17.10 - Improper Privilege Management
Jun 23, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-2175 HIGH
vim < 8.2.5148 - Out-of-bounds Read
Jun 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2068 HIGH
OpenSSL 1.0.2-1.0.2ze, 1.1.1-1.1.1o, 3.0.0-3.0.3 - OS Command Injection via c_rehash Script
Jun 21, 2022
CVSS 7.3
EPSS 0.20
CVE-2022-1720 HIGH
vim < 8.2.4956 - Out-of-bounds Read in grab_file_name
Jun 20, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-2129 HIGH
vim < 8.2.5126 - Out-of-bounds Write
Jun 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2126 HIGH
vim < 8.2.5123 - Out-of-bounds Read
Jun 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2125 HIGH
vim < 8.2.5122 - Heap-based Buffer Overflow
Jun 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2124 HIGH
vim < 8.2.5120 - Out-of-bounds Read
Jun 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-32547 HIGH
ImageMagick < 6.9.12-45 - Denial of Service via Misaligned Address Load in Property Handling
Jun 16, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-32546 HIGH
ImageMagick < 6.9.12-44 - Integer Overflow in PCL Coder
Jun 16, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-32545 HIGH
ImageMagick < 6.9.12-43 - Integer Overflow in PSD Coder
Jun 16, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2085 MEDIUM
Ghostscript - Denial of Service via NULL Pointer Dereference in Buffer Device Allocation
Jun 16, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-30184 MEDIUM
.NET and Visual Studio - Exposure of Sensitive Information
Jun 15, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-21166 MEDIUM
Xen < 1.14.100.3 - Information Disclosure
Jun 15, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21125 MEDIUM
Xen - Incomplete Cleanup of Microarchitectural Fill Buffers
Jun 15, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-21123 MEDIUM
Xen - Incomplete Cleanup Information Disclosure
Jun 15, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-31033 MEDIUM
mechanize < 2.8.5 - Authorization Header Exposure via Redirect to Different Port
Jun 09, 2022
CVSS 5.9
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV