Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

fedoraproject fedora 26 vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3
CVE-2021-1870
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a re...
Apple Mac Os XApple Mac Os X 10.15.7Apple Iphone OsApple Ipad OsApple MacosWebkitgtk WebkitgtkFedoraproject Fedora 32Fedoraproject Fedora 33
9.8
CVSSv3
CVE-2021-1871
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a re...
Apple Mac Os XApple Mac Os X 10.15.7Apple Iphone OsApple Ipad OsApple MacosDebian Debian Linux 10.0Fedoraproject Fedora 33
9.8
CVSSv3
CVE-2017-12170
Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with default configuration. This has security implications because of overriding security-r...
Pureftpd Pure-ftpd 1.0.46-1Fedoraproject Fedora 27Fedoraproject Fedora 26
9.8
CVSSv3
CVE-2017-11462
Double free vulnerability in MIT Kerberos 5 (aka krb5) allows malicious users to have unspecified impact via vectors involving automatic deletion of security contexts on error.
Mit Kerberos 5 1.14Mit Kerberos 5 1.14.1Mit Kerberos 5 1.14.2Mit Kerberos 5 1.14.3Mit Kerberos 5 1.14.4Mit Kerberos 5 1.14.5Mit Kerberos 5 1.15Mit Kerberos 5 1.15.1Fedoraproject Fedora 26Fedoraproject Fedora 25
9.8
CVSSv3
CVE-2016-10243
TeX Live allows remote malicious users to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
Debian Debian Linux 8.0Debian Debian Linux 7.0Fedoraproject Fedora 26Fedoraproject Fedora 25Tug Tex Live -
8.8
CVSSv3
CVE-2021-30851
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
Apple WatchosApple TvosApple IpadosApple Iphone OsApple SafariApple MacosApple Macos 12.0.1Debian Debian Linux 10.0Debian Debian Linux 11.0Fedoraproject Fedora 33Fedoraproject Fedora 34
8.8
CVSSv3
CVE-2017-15365
sql/event_data_objects.cc in MariaDB prior to 10.1.30 and 10.2.x prior to 10.2.10 and Percona XtraDB Cluster prior to 5.6.37-26.21-3 and 5.7.x prior to 5.7.19-29.22-3 allows remote authenticated users with SQL access to bypass intended access restrictions and replicate data defin...
Fedoraproject Fedora 26Mariadb MariadbPercona Xtradb Cluster
7.8
CVSSv3
CVE-2021-30846
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple IpadosApple Iphone OsApple WatchosApple TvosApple SafariApple MacosDebian Debian Linux 10.0Debian Debian Linux 11.0Fedoraproject Fedora 33Fedoraproject Fedora 34
7.8
CVSSv3
CVE-2019-20044
In Zsh prior to 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload with a module that calls setuid...
Zsh ZshFedoraproject Fedora 30Fedoraproject Fedora 31Debian Debian Linux 8.0Debian Debian Linux 9.0Apple Mac Os XApple Iphone OsApple WatchosApple TvosApple IpadosApple Mac Os X 10.14.6Apple Mac Os X 10.13.6
7.5
CVSSv3
CVE-2022-3602
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue...
Openssl OpensslFedoraproject Fedora 36Fedoraproject Fedora 37Netapp Clustered Data Ontap -Fedoraproject Fedora 26Fedoraproject Fedora 27Nodejs Node.js 19.0.0Nodejs Node.js 18.12.0Nodejs Node.js
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook