fedoraproject

5,423 tracked vulnerabilities.

CVE-2021-39164 LOW
Matrix Synapse < 1.41.1 - Unauthenticated Exposure of Room Membership via History Visibility
Aug 31, 2021
CVSS 3.1
EPSS 0.01
CVE-2021-39163 LOW
Matrix Synapse < 1.41.1 - Unauthenticated Exposure of Sensitive Room Information via Group Endpoints
Aug 31, 2021
CVSS 3.1
EPSS 0.01
CVE-2021-34434 MEDIUM
Eclipse Mosquitto 2.0-2.0.11 - Improper Authorization in Dynamic Security Plugin
Aug 30, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-39272 MEDIUM
fetchmail < 6.4.22 - Cleartext Transmission of Sensitive Information via STARTTLS Enforcement Bypass
Aug 30, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-28700 MEDIUM
Xen >=4.12.0 - Unrestricted Memory Allocation in dom0less DomUs
Aug 27, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-28699 MEDIUM
inadequate grant-v2 status frames array bounds check - Info Disclosure
Aug 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28698 MEDIUM
Xen >= 3.2.0 - Denial of Service via Grant Table Handling Infinite Loop
Aug 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28697 HIGH
Xen 4.0.0-4.14.x - Race Condition in Grant Table v2 Status Page De-allocation
Aug 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28696 MEDIUM
Xen - Incorrect Authorization in IOMMU Page Mapping
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-28695 MEDIUM
IOMMU page mapping issues on x86 - Info Disclosure
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-28694 MEDIUM
IOMMU page mapping issues on x86 - Info Disclosure
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-40153 HIGH
squashfs-tools 4.5 - Path Traversal and Arbitrary File Write via unsquash-1.c Directory Entry
Aug 27, 2021
CVSS 8.1
EPSS 0.03
CVE-2021-30604 HIGH
Google Chrome <92.0.4515.159 - Use After Free
Aug 26, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-30603 HIGH
Google Chrome <92.0.4515.159 - Heap Corruption
Aug 26, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-30602 HIGH
Google Chrome <92.0.4515.159 - Use After Free
Aug 26, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-30601 HIGH
Google Chrome <92.0.4515.159 - Use After Free
Aug 26, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-30600 HIGH
Google Chrome <92.0.4515.159 - Use After Free
Aug 26, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-30599 HIGH
Google Chrome < 92.0.4515.159 - Remote Code Execution via V8 Type Confusion
Aug 26, 2021
CVSS 8.8
EPSS 0.05
CVE-2021-30598 HIGH
Google Chrome < 92.0.4515.159 - Remote Code Execution via V8 Type Confusion
Aug 26, 2021
CVSS 8.8
EPSS 0.07
CVE-2021-30597 MEDIUM
Google Chrome <92.0.4515.131 - Use After Free
Aug 26, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-30596 MEDIUM
Google Chrome < 92.0.4515.131 - Unauthenticated URL Spoofing via Omnibox Manipulation
Aug 26, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-30594 MEDIUM
Google Chrome <92.0.4515.131 - Use After Free
Aug 26, 2021
CVSS 6.8
EPSS 0.01
CVE-2021-30593 HIGH
Google Chrome <92.0.4515.131 - Info Disclosure
Aug 26, 2021
CVSS 8.1
EPSS 0.02
CVE-2021-30592 HIGH
Google Chrome <92.0.4515.131 - Memory Corruption
Aug 26, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-30591 HIGH
Google Chrome <92.0.4515.131 - Use After Free
Aug 26, 2021
CVSS 8.8
EPSS 0.03