Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-5853

  • EPSS 0.67%
  • Published 01.11.2023 18:15:10
  • Last modified 21.11.2024 08:42:38

Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2023-5854

  • EPSS 0.66%
  • Published 01.11.2023 18:15:10
  • Last modified 29.04.2025 21:15:50

Use after free in Profiles in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. (Chromium security severity: Medium)

8.8

CVE-2023-5855

  • EPSS 0.66%
  • Published 01.11.2023 18:15:10
  • Last modified 29.04.2025 21:15:50

Use after free in Reading Mode in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. (Chromium security severity: Med...

8.8

CVE-2023-5856

  • EPSS 0.66%
  • Published 01.11.2023 18:15:10
  • Last modified 29.04.2025 21:15:51

Use after free in Side Panel in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium...

8.8

CVE-2023-5857

  • EPSS 1.25%
  • Published 01.11.2023 18:15:10
  • Last modified 21.11.2024 08:42:38

Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially execute arbitrary code via a malicious file. (Chromium security severity: Medium)

4.3

CVE-2023-5858

  • EPSS 0.71%
  • Published 01.11.2023 18:15:10
  • Last modified 12.06.2025 15:15:35

Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2023-5859

  • EPSS 0.67%
  • Published 01.11.2023 18:15:10
  • Last modified 21.11.2024 08:42:38

Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. (Chromium security severity: Low)

6.1

CVE-2023-5480

  • EPSS 0.23%
  • Published 01.11.2023 18:15:09
  • Last modified 21.11.2024 08:41:51

Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file. (Chromium security severity: High)

8.8

CVE-2023-5482

  • EPSS 13.86%
  • Published 01.11.2023 18:15:09
  • Last modified 30.04.2025 15:15:59

Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

5.3

CVE-2023-43796

  • EPSS 0.16%
  • Published 31.10.2023 17:15:23
  • Last modified 13.02.2025 17:17:13

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are...