Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

fedoraproject fedora 35 vulnerabilities and exploits

(subscribe to this query)

5.9
CVSSv3
CVE-2021-40530
The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's...
Cryptopp Crypto\\+\\+Fedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-30592
Out of bounds write in Tab Groups in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
9.1
CVSSv3
CVE-2022-1053
Keylime does not enforce that the agent registrar data is the same when the tenant uses it for validation of the EK and identity quote and the verifier for validating the integrity quote. This allows an attacker to use one AK, EK pair from a real TPM to pass EK validation and...
Keylime KeylimeFedoraproject Fedora 34Fedoraproject Fedora 35Fedoraproject Fedora 36
8.3
CVSSv3
CVE-2021-42574
** DISPUTED ** An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of...
Unicode UnicodeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-30572
Use after free in Autofill in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-30567
Use after free in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to open DevTools to potentially exploit heap corruption via specific user gesture....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
6.5
CVSSv3
CVE-2021-30583
Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-30585
Use after free in sensor handling in Google Chrome on Windows prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
7.8
CVSSv3
CVE-2021-30577
Insufficient policy enforcement in Installer in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to perform local privilege escalation via a crafted file....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-30604
Use after free in ANGLE in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page....
Google ChromeFedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-29337CVE-2021-32965firmwareCVE-2022-1388injectauthentication bypassCVE-2022-22972CVE-2022-29333CVE-2021-45914
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook