Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-23263

  • EPSS 0.4%
  • Published 08.03.2024 02:15:48
  • Last modified 09.12.2024 14:55:47

A logic issue was addressed with improved validation. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may...

9.9

CVE-2024-2044

Exploit
  • EPSS 81.66%
  • Published 07.03.2024 21:15:08
  • Last modified 19.09.2025 14:55:20

pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code. If the server is running on Windows, an unauthenticated attacker can load and deserialize remote pickle objects and gain co...

7.5

CVE-2024-1931

  • EPSS 6.75%
  • Published 07.03.2024 10:15:07
  • Last modified 17.12.2024 16:56:50

NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that can cause denial of service by a certain code path that can lead to an infinite loop. Unbound 1.18.0 introduced a feature that removes EDE records from ...

8.8

CVE-2024-2174

Exploit
  • EPSS 0.12%
  • Published 06.03.2024 19:15:09
  • Last modified 19.12.2024 20:24:09

Inappropriate implementation in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-2176

Exploit
  • EPSS 0.67%
  • Published 06.03.2024 19:15:09
  • Last modified 19.12.2024 20:23:37

Use after free in FedCM in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-2173

Exploit
  • EPSS 0.09%
  • Published 06.03.2024 19:15:08
  • Last modified 21.03.2025 21:15:35

Out of bounds memory access in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

7.5

CVE-2024-25111

  • EPSS 1.39%
  • Published 06.03.2024 19:15:07
  • Last modified 10.04.2025 17:44:48

Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause D...

7.5

CVE-2024-28084

  • EPSS 0.08%
  • Published 03.03.2024 21:15:49
  • Last modified 27.03.2025 21:15:46

p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact because of initialization issues in situations where parsing of advertised service information...

5.5

CVE-2024-24246

Exploit
  • EPSS 0.22%
  • Published 29.02.2024 20:15:41
  • Last modified 21.11.2024 08:59:03

Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.

7.5

CVE-2024-22871

Exploit
  • EPSS 0.08%
  • Published 29.02.2024 02:15:09
  • Last modified 28.05.2025 19:56:07

An issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__5920 function.