Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-18218

Exploit
  • EPSS 0.23%
  • Published 21.10.2019 05:15:10
  • Last modified 21.11.2024 04:32:51

cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).

9

CVE-2019-14287

Exploit
  • EPSS 86.13%
  • Published 17.10.2019 18:15:12
  • Last modified 21.11.2024 04:26:22

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !r...

6.5

CVE-2019-3004

  • EPSS 0.55%
  • Published 16.10.2019 18:15:34
  • Last modified 21.11.2024 04:41:58

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protoco...

4.4

CVE-2019-3009

  • EPSS 0.31%
  • Published 16.10.2019 18:15:34
  • Last modified 21.11.2024 04:41:58

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection). Supported versions that are affected are 8.0.17 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple ...

6.5

CVE-2019-3011

  • EPSS 0.55%
  • Published 16.10.2019 18:15:34
  • Last modified 21.11.2024 04:41:59

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocol...

4.4

CVE-2019-3018

  • EPSS 0.45%
  • Published 16.10.2019 18:15:34
  • Last modified 21.11.2024 04:42:00

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.17 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to...

5.5

CVE-2019-2991

  • EPSS 0.44%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:56

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.017 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple prot...

5.3

CVE-2019-2993

  • EPSS 0.55%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:57

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API). Supported versions that are affected are 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network acces...

4.9

CVE-2019-2997

  • EPSS 0.31%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:57

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols...

4.9

CVE-2019-2998

  • EPSS 0.31%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:57

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...