Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 18 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2013-4411
Review Board: URL processing gives unauthorized users access to review lists
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.3
CVSSv3
CVE-2013-1930
MantisBT 1.2.12 prior to 1.2.15 allows authenticated users to by the workflow restriction and close issues.
Mantisbt Mantisbt
Fedoraproject Fedora 17
Fedoraproject Fedora 18
3.7
CVSSv3
CVE-2023-31124
c-ares is an asynchronous resolver library. When cross-compiling c-ares and using the autotools build system, CARES_RANDOM_FILE will not be set, as seen when cross compiling aarch64 android. This will downgrade to using rand() as a fallback which could allow an malicious user to ...
C-ares Project C-ares
Fedoraproject Fedora 37
Fedoraproject Fedora 38
3.7
CVSSv3
CVE-2022-21248
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to ...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 1.7.0
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jre 1.8.0
Oracle Jdk 17.0.1
Oracle Jdk 1.7.0
Oracle Jdk 11.0.13
Oracle Jdk 1.8.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
Netapp E-series Santricity Os Controller
Netapp Cloud Insights Acquisition Unit -
NA
CVE-2013-2191
python-bugzilla prior to 0.9.0 does not validate X.509 certificates, which allows man-in-the-middle malicious users to spoof Bugzilla servers via a crafted certificate.
Python Bugzilla Project Python-bugzilla
Python Bugzilla Project Python-bugzilla 0.7.0
Python Bugzilla Project Python-bugzilla 0.6.2
Python Bugzilla Project Python-bugzilla 0.6.1
Python Bugzilla Project Python-bugzilla 0.6.0
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Fedoraproject Fedora 18
Fedoraproject Fedora 17
Opensuse Opensuse 11.4
NA
CVE-2013-2139
Buffer overflow in srtp.c in libsrtp in srtp 1.4.5 and previous versions allows remote malicious users to cause a denial of service (crash) via vectors related to a length inconsistency in the crypto_policy_set_from_profile_for_rtp and srtp_protect functions.
Opensuse Opensuse 12.3
Fedoraproject Fedora 18
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Opensuse Opensuse 13.1
Cisco Libsrtp
Cisco Libsrtp 1.4.4
Cisco Libsrtp 1.4.2
Cisco Libsrtp 1.0.5
Cisco Libsrtp 1.0.4
Cisco Libsrtp 1.0.2
Cisco Libsrtp 1.0.1
Cisco Libsrtp 1.4.0
Cisco Libsrtp 1.0.6
Cisco Libsrtp 1.4.1
Cisco Libsrtp 1.3.20
NA
CVE-2011-5268
connection.c in Bip prior to 0.8.9 does not properly close sockets, which allows remote malicious users to cause a denial of service (file descriptor consumption and crash) via multiple failed SSL handshakes, a different vulnerability than CVE-2013-4550. NOTE: this issue was SPLI...
Duckcorp Bip 0.8.1
Duckcorp Bip 0.8.2
Duckcorp Bip 0.8.3
Duckcorp Bip 0.8.4
Duckcorp Bip 0.8.0
Duckcorp Bip 0.8.5
Duckcorp Bip 0.8.6
Duckcorp Bip 0.8.7
Duckcorp Bip
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Fedoraproject Fedora 18
NA
CVE-2013-4550
Bip prior to 0.8.9, when running as a daemon, writes SSL handshake errors to an unexpected file descriptor that was previously associated with stderr before stderr has been closed, which allows remote malicious users to write to other sockets and have an unspecified impact via a ...
Fedoraproject Fedora 19
Fedoraproject Fedora 18
Fedoraproject Fedora 20
Duckcorp Bip 0.8.3
Duckcorp Bip 0.8.4
Duckcorp Bip 0.8.0
Duckcorp Bip 0.8.5
Duckcorp Bip 0.8.6
Duckcorp Bip 0.8.7
Duckcorp Bip
Duckcorp Bip 0.8.1
Duckcorp Bip 0.8.2
NA
CVE-2013-0348
thttpd.c in sthttpd prior to 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.
Open Source Development Team Sthttpd 2.26.3
Open Source Development Team Sthttpd 2.26
Open Source Development Team Sthttpd 2.26.1
Open Source Development Team Sthttpd 2.26.2
Open Source Development Team Sthttpd
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Gentoo Linux
Opensuse Opensuse 13.1
Acme Thttpd 2.25
NA
CVE-2013-1812
The ruby-openid gem prior to 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service (CPU consumption) via (1) a large XRDS document or (2) an XML Entity Expansion (XEE) attack.
Fedoraproject Fedora 18
Fedoraproject Fedora 17
Janrain Ruby-openid
Janrain Ruby-openid 2.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »