Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

fedoraproject fedora 33 vulnerabilities and exploits

(subscribe to this query)

3.2
CVE-2020-14394
An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service....
Qemu Qemu 6.1.50Fedoraproject Fedora 33Fedoraproject Extra Packages For Enterprise Linux 7.0Redhat Enterprise Linux 7.0Redhat Enterprise Linux 6.0Redhat Enterprise Linux 5.0Redhat Enterprise Linux 8.0Redhat Openstack Platform 13.0Redhat Openstack Platform 10.0Redhat Enterprise Linux 9.0
5.3
CVSSv3
CVE-2021-42782
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library....
Opensc Project OpenscFedoraproject Fedora 33
5.3
CVSSv3
CVE-2021-42780
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library....
Opensc Project OpenscFedoraproject Fedora 33Redhat Enterprise Linux 7.0
5.3
CVSSv3
CVE-2021-42781
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library....
Opensc Project OpenscFedoraproject Fedora 33Redhat Enterprise Linux 7.0
5.3
CVSSv3
CVE-2021-42779
A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid....
Opensc Project OpenscFedoraproject Fedora 33Redhat Enterprise Linux 7.0Redhat Enterprise Linux 8.0
5.3
CVSSv3
CVE-2021-42778
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo....
Opensc Project OpenscFedoraproject Fedora 33Redhat Enterprise Linux 7.0Redhat Enterprise Linux 8.0
7.4
CVSSv3
CVE-2021-3618
ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer...
F5 NginxSendmail SendmailVsftpd Project VsftpdFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
6.5
CVSSv3
CVE-2021-20257
An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host,...
Qemu QemuFedoraproject Fedora 33Redhat Enterprise Linux 6.0Redhat Enterprise Linux 8.0Redhat Openstack Platform 13.0Redhat Openstack Platform 10.0Redhat Enterprise Linux For Power Little Endian 8.0Redhat Enterprise Linux For Ibm Z Systems 8.0Redhat Codeready Linux Builder -Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a...
Python PythonPython Python 3.10.0Redhat Enterprise Linux 8.0Redhat Enterprise Linux Server Tus 8.4Redhat Enterprise Linux Eus 8.4Redhat Enterprise Linux Server Aus 8.4Redhat Enterprise Linux Server Update Services For Sap Solutions 8.4Redhat Enterprise Linux For Power Little Endian 8.0Redhat Enterprise Linux For Ibm Z Systems Eus 8.4Redhat Enterprise Linux For Ibm Z Systems 8.0Redhat Enterprise Linux For Power Little Endian Eus 8.4Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.4Redhat Codeready Linux Builder For Power Little Endian 8.0Redhat Codeready Linux Builder 8.0Redhat Codeready Linux Builder For Ibm Z Systems 8.0Fedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35Fedoraproject Fedora 36Fedoraproject Extra Packages For Enterprise Linux 7.0Netapp Ontap Select Deploy Administration Utility -Netapp Hci Compute Node Firmware -Netapp Management Services For Element Software And Netapp Hci -Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
7.5
CVSSv3
CVE-2021-3737
A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to...
Python PythonRedhat Enterprise Linux 7.0Redhat Enterprise Linux 6.0Redhat Enterprise Linux 8.0Redhat Enterprise Linux For Power Little Endian 8.0Redhat Enterprise Linux For Ibm Z Systems 8.0Redhat Codeready Linux Builder For Ibm Z Systems 8.0Redhat Codeready Linux Builder For Power Little Endian 8.0Redhat Codeready Linux Builder 8.0Fedoraproject Fedora 33Fedoraproject Fedora 34Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 20.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 21.04Netapp Ontap Select Deploy Administration Utility -Netapp Hci -Netapp Management Services For Element Software -Netapp Netapp Xcp Smb -Netapp Xcp Nfs -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-26397insecure direct object referenceCVE-2022-46405wirelessCVE-2022-0543CVE-2022-41034CVE-2020-26399bypassCVE-2021-43866
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook