Fedoraproject

Fedora

5319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-30887

  • EPSS 0.38%
  • Veröffentlicht 24.08.2021 19:15:16
  • Zuletzt bearbeitet 21.11.2024 06:04:54

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to unexpectedly unenforced Content Security Po...

8.8

CVE-2021-30858

Warnung
  • EPSS 1%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 27.10.2025 17:38:33

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report tha...

8.8

CVE-2021-30851

  • EPSS 0.77%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.

9.3

CVE-2021-38714

Exploit
  • EPSS 0.18%
  • Veröffentlicht 24.08.2021 14:15:10
  • Zuletzt bearbeitet 21.11.2024 06:17:58

In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution. The vulnerability is found in ssgLoadTGA() function in src/ssg/ssgLoadTGA.cxx file.

8.5

CVE-2021-39152

Exploit
  • EPSS 67.83%
  • Veröffentlicht 23.08.2021 19:15:13
  • Zuletzt bearbeitet 23.05.2025 16:47:47

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed inp...

8.5

CVE-2021-39150

Exploit
  • EPSS 1.97%
  • Veröffentlicht 23.08.2021 19:15:12
  • Zuletzt bearbeitet 23.05.2025 16:48:02

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed inp...

6.3

CVE-2021-39140

Exploit
  • EPSS 0.04%
  • Veröffentlicht 23.08.2021 19:15:10
  • Zuletzt bearbeitet 23.05.2025 16:50:34

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload r...

8.5

CVE-2021-39153

Exploit
  • EPSS 0.57%
  • Veröffentlicht 23.08.2021 18:15:13
  • Zuletzt bearbeitet 23.05.2025 16:50:17

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream, if usin...

8.5

CVE-2021-39154

Exploit
  • EPSS 0.71%
  • Veröffentlicht 23.08.2021 18:15:13
  • Zuletzt bearbeitet 23.05.2025 16:47:35

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user...

8.5

CVE-2021-39141

Exploit
  • EPSS 84.54%
  • Veröffentlicht 23.08.2021 18:15:12
  • Zuletzt bearbeitet 23.05.2025 16:52:36

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user...