Fedoraproject

Fedora

5319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-23263

  • EPSS 0.4%
  • Veröffentlicht 08.03.2024 02:15:48
  • Zuletzt bearbeitet 09.12.2024 14:55:47

A logic issue was addressed with improved validation. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may...

9.9

CVE-2024-2044

Exploit
  • EPSS 81.66%
  • Veröffentlicht 07.03.2024 21:15:08
  • Zuletzt bearbeitet 19.09.2025 14:55:20

pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code. If the server is running on Windows, an unauthenticated attacker can load and deserialize remote pickle objects and gain co...

7.5

CVE-2024-1931

  • EPSS 6.75%
  • Veröffentlicht 07.03.2024 10:15:07
  • Zuletzt bearbeitet 17.12.2024 16:56:50

NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that can cause denial of service by a certain code path that can lead to an infinite loop. Unbound 1.18.0 introduced a feature that removes EDE records from ...

8.8

CVE-2024-2174

Exploit
  • EPSS 0.12%
  • Veröffentlicht 06.03.2024 19:15:09
  • Zuletzt bearbeitet 19.12.2024 20:24:09

Inappropriate implementation in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-2176

Exploit
  • EPSS 0.67%
  • Veröffentlicht 06.03.2024 19:15:09
  • Zuletzt bearbeitet 19.12.2024 20:23:37

Use after free in FedCM in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-2173

Exploit
  • EPSS 0.09%
  • Veröffentlicht 06.03.2024 19:15:08
  • Zuletzt bearbeitet 21.03.2025 21:15:35

Out of bounds memory access in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

7.5

CVE-2024-25111

  • EPSS 1.39%
  • Veröffentlicht 06.03.2024 19:15:07
  • Zuletzt bearbeitet 10.04.2025 17:44:48

Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause D...

7.5

CVE-2024-28084

  • EPSS 0.08%
  • Veröffentlicht 03.03.2024 21:15:49
  • Zuletzt bearbeitet 27.03.2025 21:15:46

p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact because of initialization issues in situations where parsing of advertised service information...

5.5

CVE-2024-24246

Exploit
  • EPSS 0.22%
  • Veröffentlicht 29.02.2024 20:15:41
  • Zuletzt bearbeitet 21.11.2024 08:59:03

Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.

7.5

CVE-2024-22871

Exploit
  • EPSS 0.08%
  • Veröffentlicht 29.02.2024 02:15:09
  • Zuletzt bearbeitet 28.05.2025 19:56:07

An issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__5920 function.