fedoraproject
5,420 tracked vulnerabilities.
CVE-2022-22719
HIGH
Apache HTTP Server <2.4.52 - Memory Corruption
Mar 14, 2022
CVSS 7.5
EPSS 0.30
CVE-2022-26981
HIGH
liblouis < 3.21.0 - Buffer Overflow in compilePassOpcode
Mar 13, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-25601
MEDIUM
Contact Form X <= 2.4 - Reflected Cross-Site Scripting via Tab Parameter
Mar 11, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-25600
MEDIUM
Weplugins WP Maps < 4.2.4 - CSRF
Mar 11, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-0924
MEDIUM
libtiff 4.3.0 - Out-of-bounds Read in tiffcp via Crafted TIFF File
Mar 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0909
MEDIUM
libtiff 4.3.0 - Denial of Service via Crafted TIFF File
Mar 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0908
HIGH
libtiff < 4.3.0 - Denial of Service via memcpy() in TIFFFetchNormalTag
Mar 11, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-0907
MEDIUM
libtiff 4.3.0 - Denial of Service via Crafted TIFF File
Mar 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0860
CRITICAL
cobbler < 3.3.2 - Improper Authorization
Mar 11, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-0891
MEDIUM
libtiff 4.3.0 - Heap Buffer Overflow in ExtractImageSection Function
Mar 10, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-0865
MEDIUM
libtiff 4.3.0 - Denial of Service via Crafted TIFF File
Mar 10, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0856
MEDIUM
libcaca - Denial of Service via Divide By Zero in img2txt
Mar 10, 2022
CVSS 6.5
EPSS 0.04
CVE-2022-0847
HIGH
KEV
Dirty Pipe Local Privilege Escalation via CVE-2022-0847
Mar 10, 2022
CVSS 7.8
EPSS 0.82
CVE-2022-0725
HIGH
KeePass - Information Exposure via Plain Text Password Logging
Mar 10, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-0516
HIGH
Linux Kernel < 5.17 - Unauthorized Memory Write Access via KVM s390 Guest SIDA Operation
Mar 10, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-0433
MEDIUM
Linux kernel <5.17-rc1 - NULL Pointer Dereference
Mar 10, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0204
HIGH
bluez < 5.63 - Denial of Service via Heap Overflow
Mar 10, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-24919
LOW
Zabbix Frontend 4.0.0-4.0.37 - Authenticated Reflected Cross-Site Scripting via Graph Page Link
Mar 09, 2022
CVSS 3.7
EPSS 0.01
CVE-2022-24918
LOW
Zabbix Frontend 5.0.0-5.0.19 - Authenticated Reflected Cross-Site Scripting via Item Page Link
Mar 09, 2022
CVSS 3.7
EPSS 0.01
CVE-2022-24917
LOW
Zabbix Frontend 4.0.0-4.0.37 - Authenticated Reflected Cross-Site Scripting via Service Page Link
Mar 09, 2022
CVSS 3.7
EPSS 0.01
CVE-2022-24349
MEDIUM
Zabbix Frontend - XSS
Mar 09, 2022
CVSS 4.6
EPSS 0.01
CVE-2022-24512
MEDIUM
Microsoft .NET, PowerShell, and Visual Studio - Remote Code Execution
Mar 09, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-24464
HIGH
.NET 5.0-5.0.13 and .NET Core 3.1-3.1.21 - Denial of Service
Mar 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-24713
HIGH
regex <= 1.5.4 - Denial of Service via Regex Parsing Mitigation Bypass
Mar 08, 2022
CVSS 7.5
EPSS 0.10
CVE-2022-24737
MEDIUM
httpie < 3.1.0 - Exposure of Sensitive Information via Session Cookie Handling
Mar 07, 2022
CVSS 6.5
EPSS 0.01
Products
fedora 5,351
extra_packages_for_enterprise_linux 76
389_directory_server 39
sssd 18
fedora_core 8
389_administration_server 1
anaconda 1
arm_installer 1
commons 1
coolkey 1
crypto-utils 1
fedmsg 1
fedora_linux_kernel 1
python-fedora 1
sectool 1
selinux-policy 1
spin-kickstarts 1
supybot-fedora 1
unbound 1
Quick Filters