fedoraproject

5,420 tracked vulnerabilities.

CVE-2022-21661 HIGH NUCLEI
WordPress 3.7-3.7.36 - SQL Injection via WP_Query
Jan 06, 2022
CVSS 8.0
EPSS 0.90
CVE-2021-3600 HIGH
Linux Kernel 4.14.115-4.14.308 - Out-of-bounds Read in eBPF 32-bit Register Bounds Tracking
Jan 08, 2024
CVSS 7.8
EPSS 0.00
CVE-2021-29390 HIGH
libjpeg-turbo 2.0.90 - Heap-Based Buffer Over-Read in jdcoefct.c
Aug 22, 2023
CVSS 7.1
EPSS 0.00
CVE-2021-43612 HIGH
lldpd < 1.0.13 - Out-of-bounds Write via SONMP Packet Decoding
Apr 15, 2023
CVSS 7.5
EPSS 0.00
CVE-2021-3923 LOW
Linux Kernel < 5.15.14 - Kernel Stack Information Leak via RDMA over Infiniband
Mar 27, 2023
CVSS 2.3
EPSS 0.00
CVE-2021-20251 MEDIUM
Samba 4.1.0-4.16.7 - Race Condition in Password Lockout Mechanism
Mar 06, 2023
CVSS 5.9
EPSS 0.00
CVE-2021-33640 MEDIUM
openEuler libtar - Use-After-Free in tar_close()
Dec 19, 2022
CVSS 6.2
EPSS 0.00
CVE-2021-33621 HIGH
cgi <0.1.0.2, <0.2.x -<0.2.2, <0.3.x -<0.3.5 - XSS
Nov 18, 2022
CVSS 8.8
EPSS 0.01
CVE-2021-46848 CRITICAL
GNU Libtasn1 <4.19.0 - Buffer Overflow
Oct 24, 2022
CVSS 9.1
EPSS 0.01
CVE-2021-36568 MEDIUM
Moodle 3.9.7, 3.10.4, 3.11 - Stored Cross-Site Scripting in Database Activity Field Name and Description
Sep 13, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-3826 MEDIUM
GCC - Heap/Stack Buffer Overflow in dlang_lname Function
Sep 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-3669 MEDIUM
Linux Kernel - Denial of Service via Shared Memory Segment Count Exhaustion
Aug 26, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3574 LOW
ImageMagick-7.0.11-5 - Memory Corruption
Aug 26, 2022
CVSS 3.3
EPSS 0.00
CVE-2021-3979 MEDIUM
Red Hat Ceph Storage - Use of a Broken or Risky Cryptographic Algorithm
Aug 25, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3929 HIGH
QEMU < 7.0.0 - Use-After-Free in NVME Controller Emulation
Aug 25, 2022
CVSS 8.2
EPSS 0.05
CVE-2021-35938 MEDIUM
rpm < 4.18.0 - Privilege Escalation via Symbolic Link Attack
Aug 25, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-35937 MEDIUM
rpm < 4.18.0 - Unauthenticated Time-of-check Time-of-use Race Condition
Aug 25, 2022
CVSS 6.4
EPSS 0.00
CVE-2021-4217 LOW
unzip - Null Pointer Dereference via Unicode String Handling
Aug 24, 2022
CVSS 3.3
EPSS 0.00
CVE-2021-3997 MEDIUM
systemd 240-250.1 - Denial of Service via Uncontrolled Recursion in systemd-tmpfiles
Aug 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3996 MEDIUM
util-linux 2.34-2.37.2 - Unauthenticated Filesystem Unmount via libmount Logic Error
Aug 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3995 MEDIUM
util-linux 2.34-2.37.2 - Unprivileged FUSE Filesystem Unmount via UID Prefix Match
Aug 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3975 MEDIUM
libvirt < 7.1.0 - Use-After-Free in qemuMonitorUnregister
Aug 23, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-3905 HIGH
Openvswitch < 2.17.0 - Memory Leak
Aug 23, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3839 HIGH
DPDK < 22.03 - Out-of-bounds Read in vhost_user_set_inflight_fd
Aug 23, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-3670 MEDIUM
Samba 4.1.0-4.15.9 - Uncontrolled Resource Consumption via MaxQueryDuration LDAP Bypass
Aug 23, 2022
CVSS 6.5
EPSS 0.03
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV