Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 22 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2015-0556
Open-source ARJ archiver 3.10.22 allows remote malicious users to conduct directory traversal attacks via a symlink attack in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
5.8
CVSSv2
CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote malicious users to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 21
Fedoraproject Fedora 20
5
CVSSv2
CVE-2015-0295
The BMP decoder in QtGui in QT prior to 5.5 does not properly calculate the masks used to extract the color components, which allows remote malicious users to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Opensuse Opensuse 13.1
Digia Qt
7.2
CVSSv2
CVE-2015-5704
scripts/licensecheck.pl in devscripts prior to 2.15.7 allows local users to execute arbitrary shell commands.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
5
CVSSv2
CVE-2015-5705
Argument injection vulnerability in devscripts prior to 2.15.7 allows remote malicious users to write to arbitrary files via a crafted symlink and crafted filename.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
7.5
CVSSv2
CVE-2016-2173
org.springframework.core.serializer.DefaultDeserializer in Spring AMQP prior to 1.5.5 allows remote malicious users to execute arbitrary code.
Fedoraproject Fedora 24
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Vmware Spring Advanced Message Queuing Protocol
1 Github repository
7.2
CVSSv2
CVE-2015-5166
Use-after-free vulnerability in QEMU in Xen 4.5.x and previous versions does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice.
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Xen Xen
Xen Xen 4.5.1
1 Article
5
CVSSv2
CVE-2015-8853
The (1) S_reghop3, (2) S_reghop4, and (3) S_reghopmaybe3 functions in regexec.c in Perl prior to 5.24.0 allow context-dependent malicious users to cause a denial of service (infinite loop) via crafted utf-8 data, as demonstrated by "a\x80."
Fedoraproject Fedora 22
Perl Perl
7.5
CVSSv2
CVE-2015-0778
osc prior to 0.151.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in a _service file.
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Suse Opensuse Osc
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
7.2
CVSSv2
CVE-2016-3096
The create_script function in the lxc_container module in Ansible prior to 1.9.6-1 and 2.x prior to 2.0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /opt/.lxc-attach-script, (2) the archived container in the archive_path direct...
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Redhat Ansible
Redhat Ansible 2.0
Redhat Ansible 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »