Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 23 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-6233
The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework prior to 1.12.19 might allow remote malicious users to conduct SQL injection attacks via vectors related to use of the character pattern [\w]* in a regular expression.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Zend Zend Framework
7.5
CVSSv2
CVE-2016-0729
Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cpp in the XML Parser library in Apache Xerces-C prior to 3.1.3 allow remote malicious users to cause a denial of service (segmentation fault or memory corruption) or possibly execut...
Apache Xerces-c\\\\\\+\\\\\\+
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Fedoraproject Fedora 24
5
CVSSv2
CVE-2016-7970
Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass prior to 0.13.4 allows remote malicious users to cause a denial of service via unspecified vectors.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Libass Project Libass
7.5
CVSSv2
CVE-2016-8606
The REPL server (--listen) in GNU Guile 2.0.12 allows an malicious user to execute arbitrary code via an HTTP inter-protocol attack.
Gnu Guile 2.0.12
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
7.5
CVSSv2
CVE-2015-6816
ganglia-web prior to 3.7.1 allows remote malicious users to bypass authentication.
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Fedoraproject Fedora 21
Ganglia Ganglia-web
7.5
CVSSv2
CVE-2016-4861
The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework prior to 1.12.20 might allow remote malicious users to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Zend Zend Framework
7.8
CVSSv2
CVE-2016-4021
The read_binary function in buffer.c in pgpdump prior to 0.30 allows context-dependent malicious users to cause a denial of service (infinite loop and CPU consumption) via crafted input, as demonstrated by the \xa3\x03 string.
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Pgpdump Project Pgpdump
4.3
CVSSv2
CVE-2015-8400
The HTTPS fallback implementation in Shell In A Box (aka shellinabox) prior to 2.19 makes it easier for remote malicious users to conduct DNS rebinding attacks via the "/plain" URL.
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Shellinabox Project Shellinabox
5
CVSSv2
CVE-2016-3071
Libreswan 3.16 might allow remote malicious users to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform.
Libreswan Libreswan 3.16
Fedoraproject Fedora 23
Fedoraproject Fedora 24
4.3
CVSSv2
CVE-2016-8887
The jp2_colr_destroy function in libjasper/jp2/jp2_cod.c in JasPer prior to 1.900.10 allows remote malicious users to cause a denial of service (NULL pointer dereference).
Jasper Project Jasper
Fedoraproject Fedora 24
Fedoraproject Fedora 23
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
IMAP
CVE-2024-4367
server-side request forgery
information disclosure
CVE-2024-34342
CVE-2024-4281
CVE-2024-3507
CVE-2024-25560
CVE-2024-34574
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »