fedoraproject

5,420 tracked vulnerabilities.

CVE-2021-37998 HIGH
Google Chrome <95.0.4638.69 - Use After Free
Nov 23, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-37997 HIGH
Google Chrome <95.0.4638.69 - Use After Free
Nov 23, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-41281 HIGH
Synapse < 1.47.1 - Unauthenticated Path Traversal via Media Repository
Nov 23, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3672 MEDIUM
c-ares 1.0.0-1.17.1 - Domain Hijacking via DNS Hostname Validation Bypass
Nov 23, 2021
CVSS 5.6
EPSS 0.00
CVE-2021-44143 CRITICAL
isync 1.4.0-1.4.3 - Remote Code Execution via Crafted IMAP Mail Message
Nov 22, 2021
CVSS 9.8
EPSS 0.10
CVE-2021-43560 MEDIUM
Moodle <3.11.3-3.9.10 - Info Disclosure
Nov 22, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-43559 HIGH
Moodle < 3.8.8, 3.9-3.9.10, 3.10-3.10.7, 3.11-3.11.3 - Cross-Site Request Forgery via Badge Deletion
Nov 22, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-43558 MEDIUM
Moodle < 3.8.8, 3.9.0-3.9.10, 3.10.0-3.10.7, 3.11.0-3.11.3 - Reflected XSS via Filetype Admin Tool
Nov 22, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-3935 HIGH
pgbouncer < 1.16.1 - SQL Injection via Man-in-the-Middle Attack on Cert Authentication
Nov 22, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-28710 HIGH
Xen - Improper Privilege Management in VT-d IOMMU Shared Page Table Mode
Nov 21, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-21898 HIGH
libdxfrw 2.2.0-rc2-19-ge02f3580 - Remote Code Execution via Crafted DWG File
Nov 19, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-40391 CRITICAL
gerbv - Out-of-Bounds Write via Drill Format T-Code Tool Number
Nov 19, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-21900 HIGH
libdxfrw 2.2.0-rc2-19-ge02f3580 - Use-After-Free in dxfRW::processLType()
Nov 19, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-21899 HIGH
LibreCAD libdxfrw 2.2.0-rc2-19-ge02f3580 - Heap Buffer Overflow in dwgCompressor::copyCompBytes21
Nov 19, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-39929 HIGH
Wireshark 3.2.0-3.2.17 and 3.4.0-3.4.9 - Denial of Service via Bluetooth DHT Dissector
Nov 19, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-39926 HIGH
Wireshark 3.4.0-3.4.9 - Denial of Service via Bluetooth HCI_ISO Dissector Buffer Overflow
Nov 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-39925 HIGH
Wireshark 3.2.0-3.2.17 and 3.4.0-3.4.9 - Denial of Service via Bluetooth SDP Dissector Buffer Overflow
Nov 19, 2021
CVSS 7.5
EPSS 0.05
CVE-2021-39924 HIGH
Wireshark 3.2.0-3.2.17 and 3.4.0-3.4.9 - Denial of Service via Bluetooth DHT Dissector
Nov 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-39922 HIGH
Wireshark 3.2.0-3.2.17 and 3.4.0-3.4.9 - Denial of Service via C12.22 Dissector Buffer Overflow
Nov 19, 2021
CVSS 7.5
EPSS 0.05
CVE-2021-39921 HIGH
Wireshark 3.2.0-3.2.17 and 3.4.0-3.4.9 - Denial of Service via Modbus Dissector NULL Pointer Dereference
Nov 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3973 HIGH
vim < 8.2.3611 - Heap-based Buffer Overflow
Nov 19, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3968 HIGH
vim 8.2.3430-8.2.3610 - Heap-based Buffer Overflow
Nov 19, 2021
CVSS 8.0
EPSS 0.01
CVE-2021-3974 HIGH
vim < 8.2.3612 - Use-After-Free
Nov 19, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-44026 CRITICAL KEV
Roundcube < 1.3.17 and 1.4.x < 1.4.12 - SQL Injection via Search Parameters
Nov 19, 2021
CVSS 9.8
EPSS 0.73
CVE-2021-44025 MEDIUM
Roundcube Webmail < 1.3.17 and 1.4.x < 1.4.12 - Cross-Site Scripting via Attachment Filename Extension
Nov 19, 2021
CVSS 6.1
EPSS 0.01
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV