Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 20 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-8488
Cross-site scripting (XSS) vulnerability in the administrator panel in Yourls 1.7 allows remote malicious users to inject arbitrary web script or HTML via a URL that is processed by the Shorten functionality.
Yourls Yourls 1.7
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
5
CVSSv2
CVE-2010-5304
A NULL pointer dereference flaw was found in the way LibVNCServer prior to 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specially crafted ClientCutText message from a VNC client.
Libvncserver Project Libvncserver
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Fedoraproject Fedora 21
4.3
CVSSv2
CVE-2013-0294
packet.py in pyrad prior to 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote malicious users to obtain sensitive information via a brute force attack.
Pyrad Project Pyrad
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.6
CVSSv2
CVE-2014-7271
Simple Desktop Display Manager (SDDM) prior to 0.10.0 allows local users to log in as user "sddm" without authentication.
Sddm Project Sddm
Fedoraproject Fedora 20
Fedoraproject Fedora 21
5
CVSSv2
CVE-2014-2581
Smb4K prior to 1.1.1 allows remote malicious users to obtain credentials via vectors related to the cuid option in the "Additional options" line edit.
Smb4k Project Smb4k
Fedoraproject Fedora 19
Fedoraproject Fedora 20
7.2
CVSSv2
CVE-2014-7272
Simple Desktop Display Manager (SDDM) prior to 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race cond...
Sddm Project Sddm
Fedoraproject Fedora 20
Fedoraproject Fedora 21
5.8
CVSSv2
CVE-2015-0556
Open-source ARJ archiver 3.10.22 allows remote malicious users to conduct directory traversal attacks via a symlink attack in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
5.8
CVSSv2
CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote malicious users to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 21
Fedoraproject Fedora 20
6.9
CVSSv2
CVE-2014-1520
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox prior to 29.0 and Firefox ESR 24.x prior to 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the upda...
Mozilla Firefox
Mozilla Firefox Esr
Fedoraproject Fedora 19
Fedoraproject Fedora 20
5
CVSSv2
CVE-2015-0295
The BMP decoder in QtGui in QT prior to 5.5 does not properly calculate the masks used to extract the color components, which allows remote malicious users to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Opensuse Opensuse 13.1
Digia Qt
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »