fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-24050 HIGH
MariaDB CONNECT Storage Engine - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-24048 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-0585 MEDIUM
Wireshark 3.4.0-3.4.11 and 3.6.0-3.6.1 - Denial of Service via Large Loops in Protocol Dissectors
Feb 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-25315 CRITICAL
libexpat < 2.4.5 - Integer Overflow in storeRawNames
Feb 18, 2022
CVSS 9.8
EPSS 0.09
CVE-2022-25314 HIGH
libexpat < 2.4.5 - Integer Overflow in copyString
Feb 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-25313 MEDIUM
libexpat < 2.4.5 - Denial of Service via DTD Element Nesting
Feb 18, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-0629 HIGH
vim < 8.2.4397 - Stack-based Buffer Overflow
Feb 17, 2022
CVSS 7.8
EPSS 0.05
CVE-2022-25271 HIGH
Drupal 7.0.0-7.87 and 9.3.0-9.3.5 - Improper Input Validation in Form API
Feb 16, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-25258 MEDIUM
Linux Kernel < 5.16.10 - Memory Corruption via USB Gadget Interface OS Descriptor Request
Feb 16, 2022
CVSS 4.6
EPSS 0.00
CVE-2022-23804 HIGH
KiCad EDA 6.0.1 - Stack-based Buffer Overflow in Gerber Viewer Coordinate Parsing
Feb 16, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-23803 HIGH
KiCad EDA 6.0.1 - Stack-based Buffer Overflow in Gerber Viewer Coordinate Parsing
Feb 16, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-0559 CRITICAL
radareorg/radare2 <5.6.2 - Use After Free
Feb 16, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-0613 MEDIUM
uri.js < 1.19.8 - Authorization Bypass Through User-Controlled Key
Feb 16, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-25235 CRITICAL
libexpat < 2.4.5 - Improper Encoding or Escaping of Output
Feb 16, 2022
CVSS 9.8
EPSS 0.12
CVE-2022-21698 HIGH
client_golang < 1.11.1 - Denial of Service via Unbounded HTTP Method Cardinality
Feb 15, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-0586 MEDIUM
Wireshark 3.4.0-3.4.11 and 3.6.0-3.6.1 - Denial of Service via RTMPT Protocol Dissector Infinite Loop
Feb 14, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-0583 MEDIUM
Wireshark 3.4.0-3.4.11 and 3.6.0-3.6.1 - Denial of Service via PVFS Protocol Dissector
Feb 14, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-0582 MEDIUM
Wireshark 3.4.0-3.4.11 and 3.6.0-3.6.1 - Denial of Service via CSN.1 Dissector Unaligned Access
Feb 14, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-0581 MEDIUM
Wireshark 3.4.0-3.4.11 and 3.6.0-3.6.1 - Use-After-Free in CMS Protocol Dissector
Feb 14, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-0572 HIGH
vim < 8.2.4359 - Heap-based Buffer Overflow
Feb 14, 2022
CVSS 7.8
EPSS 0.02
CVE-2022-0571 MEDIUM
phoronix-test-suite/phoronix-test-suite <10.8.2 - XSS
Feb 14, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-0120 MEDIUM
Google Chrome < 97.0.4692.71 - Origin Validation Error via Password Manager
Feb 12, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-0118 MEDIUM
Google Chrome <97.0.4692.71 - Info Disclosure
Feb 12, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-0117 MEDIUM
Google Chrome < 97.0.4692.71 - Policy Bypass via Crafted HTML Page
Feb 12, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-0116 MEDIUM
Google Chrome < 97.0.4692.71 - URL Spoofing via Omnibox Manipulation
Feb 12, 2022
CVSS 4.3
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV