Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-35498

  • EPSS 5.77%
  • Veröffentlicht 11.02.2021 18:15:15
  • Zuletzt bearbeitet 23.04.2025 20:15:20

A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a ...

7.5

CVE-2020-13578

Exploit
  • EPSS 0.15%
  • Veröffentlicht 10.02.2021 20:15:15
  • Zuletzt bearbeitet 21.11.2024 05:01:32

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

7.5

CVE-2020-13574

Exploit
  • EPSS 0.15%
  • Veröffentlicht 10.02.2021 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:01:31

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

5

CVE-2020-13575

Exploit
  • EPSS 0.18%
  • Veröffentlicht 10.02.2021 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:01:31

A denial-of-service vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

9.8

CVE-2020-13576

Exploit
  • EPSS 0.76%
  • Veröffentlicht 10.02.2021 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:01:32

A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.

7.5

CVE-2020-13577

Exploit
  • EPSS 0.15%
  • Veröffentlicht 10.02.2021 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:01:32

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

7.9

CVE-2021-0326

  • EPSS 13.11%
  • Veröffentlicht 10.02.2021 17:15:19
  • Zuletzt bearbeitet 21.11.2024 05:42:31

In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed...

9.8

CVE-2021-27135

  • EPSS 1.73%
  • Veröffentlicht 10.02.2021 16:15:13
  • Zuletzt bearbeitet 21.11.2024 05:57:23

xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.

9.8

CVE-2021-26937

Exploit
  • EPSS 12.65%
  • Veröffentlicht 09.02.2021 20:15:14
  • Zuletzt bearbeitet 09.05.2025 20:15:36

encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.

8.8

CVE-2021-21148

Warnung
  • EPSS 19.9%
  • Veröffentlicht 09.02.2021 16:15:12
  • Zuletzt bearbeitet 24.10.2025 21:02:10

Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.