Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 25 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-9108
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows malicious users to cause a denial of service (application crash) via a crafted regular expression.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Artifex Mujs
9.8
CVSSv3
CVE-2013-7459
Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote malicious users to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py.
Dlitz Pycrypto
Fedoraproject Fedora 25
Fedoraproject Fedora 24
7.5
CVSSv3
CVE-2016-6866
slock allows malicious users to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.
Suckless Slock
Fedoraproject Fedora 25
Fedoraproject Fedora 24
9.8
CVSSv3
CVE-2016-8606
The REPL server (--listen) in GNU Guile 2.0.12 allows an malicious user to execute arbitrary code via an HTTP inter-protocol attack.
Gnu Guile 2.0.12
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
9.8
CVSSv3
CVE-2016-6233
The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework prior to 1.12.19 might allow remote malicious users to conduct SQL injection attacks via vectors related to use of the character pattern [\w]* in a regular expression.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Zend Zend Framework
7.5
CVSSv3
CVE-2016-7970
Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass prior to 0.13.4 allows remote malicious users to cause a denial of service via unspecified vectors.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Libass Project Libass
9.8
CVSSv3
CVE-2016-4861
The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework prior to 1.12.20 might allow remote malicious users to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Zend Zend Framework
7.8
CVSSv3
CVE-2016-6299
The scm plug-in in mock might allow malicious users to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Mock Project Scm Plugin -
5.5
CVSSv3
CVE-2017-5849
tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote malicious users to cause a denial of service (out-of-bounds read and write) via a crafted tiff image file, related to transposing width and height values.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Netpbm Project Netpbm 10.47.63
7.8
CVSSv3
CVE-2017-5330
ark prior to 16.12.1 might allow remote malicious users to execute arbitrary code via an executable in an archive, related to associated applications.
Fedoraproject Fedora 25
Kde Ark
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »