fedoraproject

5,423 tracked vulnerabilities.

CVE-2021-30547 HIGH
Google Chrome <91.0.4472.101 - Memory Corruption
Jun 15, 2021
CVSS 8.8
EPSS 0.04
CVE-2021-30546 HIGH
Google Chrome <91.0.4472.101 - Use After Free
Jun 15, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-30545 HIGH
Google Chrome <91.0.4472.101 - Use After Free
Jun 15, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-30544 HIGH
Google Chrome <91.0.4472.101 - Use After Free
Jun 15, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3595 LOW
libslirp < 4.6.0 - Uninitialized Pointer Access in tftp_input Function
Jun 15, 2021
CVSS 3.8
EPSS 0.00
CVE-2021-3594 LOW
libslirp < 4.6.0 - Uninitialized Pointer Access in UDP Packet Processing
Jun 15, 2021
CVSS 3.8
EPSS 0.00
CVE-2021-3593 LOW
libslirp < 4.6.0 - Uninitialized Pointer Access in udp6_input
Jun 15, 2021
CVSS 3.8
EPSS 0.00
CVE-2021-3592 LOW
libslirp < 4.6.0 - Uninitialized Pointer Access in bootp_input Function
Jun 15, 2021
CVSS 3.8
EPSS 0.00
CVE-2021-31618 HIGH
Apache HTTP Server mod_http2 1.15.17 - Denial of Service via NULL Pointer Dereference in HTTP/2 Header Handling
Jun 15, 2021
CVSS 7.5
EPSS 0.51
CVE-2021-31812 MEDIUM
Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Infinite Loop
Jun 12, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-31811 MEDIUM
Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Crafted PDF File
Jun 12, 2021
CVSS 5.5
EPSS 0.03
CVE-2021-22915 CRITICAL
Nextcloud <19.0.11, 20.0.10, 21.0.2 - DoS
Jun 11, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-22898 LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
Jun 11, 2021
CVSS 3.1
EPSS 0.04
CVE-2021-34557 MEDIUM
XScreenSaver 5.45 - Unauthenticated Screen Lock Bypass via Buffer Overflow in update_screen_layout()
Jun 10, 2021
CVSS 4.6
EPSS 0.00
CVE-2021-34555 HIGH
OpenDMARC 1.4.1 and 1.4.1.1 - Denial of Service via Multi-Value From Header Field
Jun 10, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-34363 CRITICAL
the_fuck < 3.31 - Path Traversal and Arbitrary File Deletion via Undo Archive Operation
Jun 10, 2021
CVSS 9.1
EPSS 0.02
CVE-2021-30641 MEDIUM
Apache HTTP Server <2.4.47 - Path Traversal
Jun 10, 2021
CVSS 5.3
EPSS 0.52
CVE-2021-26691 CRITICAL
Apache HTTP Server 2.4.0-2.4.46 - Heap-based Buffer Overflow via SessionHeader
Jun 10, 2021
CVSS 9.8
EPSS 0.68
CVE-2021-26690 HIGH
Apache HTTP Server 2.4.0-2.4.46 - Denial of Service via Crafted Cookie Header in mod_session
Jun 10, 2021
CVSS 7.5
EPSS 0.65
CVE-2021-0089 MEDIUM
Debian Linux - Information Disclosure
Jun 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-0086 MEDIUM
Intel Brand Verification Tool < 11.0.0.1225 - Observable Discrepancy in Floating-Point Operations
Jun 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-32677 HIGH
FastAPI < 0.65.2 - Cross-Site Request Forgery via JSON Payload in text/plain Content-Type
Jun 09, 2021
CVSS 8.2
EPSS 0.01
CVE-2021-33829 MEDIUM NUCLEI
CKEditor 4.14.0-4.16.0 - Cross-Site Scripting via HTML Comment Parsing
Jun 09, 2021
CVSS 6.1
EPSS 0.03
CVE-2021-26314 MEDIUM
Xen - Observable Timing Discrepancy via Floating Point Value Injection
Jun 09, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-31957 MEDIUM
.NET 5.0 < 5.0.6 and .NET Core 3.1 < 3.1.15 - Denial of Service
Jun 08, 2021
CVSS 5.9
EPSS 0.05