Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-2465

  • EPSS 0.27%
  • Veröffentlicht 03.05.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:40

Inappropriate implementation in CORS in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2023-2466

  • EPSS 0.32%
  • Veröffentlicht 03.05.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:40

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2023-2467

  • EPSS 0.03%
  • Veröffentlicht 03.05.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:40

Inappropriate implementation in Prompts in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to bypass permissions restrictions via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2023-2468

  • EPSS 0.32%
  • Veröffentlicht 03.05.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:40

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. (Chromium security severity: Low)

6.5

CVE-2023-2459

  • EPSS 0.04%
  • Veröffentlicht 03.05.2023 00:15:08
  • Zuletzt bearbeitet 21.11.2024 07:58:39

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page. (Chromium security severity: Medium)

7.3

CVE-2023-30944

  • EPSS 0.79%
  • Veröffentlicht 02.05.2023 20:15:11
  • Zuletzt bearbeitet 21.11.2024 08:01:07

The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited S...

5.3

CVE-2023-30943

  • EPSS 18.45%
  • Veröffentlicht 02.05.2023 20:15:10
  • Zuletzt bearbeitet 21.11.2024 08:01:07

The vulnerability was found Moodle which exists because the application allows a user to control path of the older to create in TinyMCE loaders. A remote user can send a specially crafted HTTP request and create arbitrary folders on the system.

5.5

CVE-2023-1786

  • EPSS 0.02%
  • Veröffentlicht 26.04.2023 23:15:08
  • Zuletzt bearbeitet 21.11.2024 07:39:54

Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

7.8

CVE-2023-29007

  • EPSS 0.93%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 04.11.2025 17:15:36

Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1, a specially crafted `.gitmodules` file with submodule URLs that are longer than 1024 characters can used t...

4.4

CVE-2023-2269

  • EPSS 0.02%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:16

A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub-component.