Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 36 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2022-0116
Inappropriate implementation in Compositing in Google Chrome before 97.0.4692.71 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
383
VMScore
CVE-2022-0118
Inappropriate implementation in WebShare in Google Chrome before 97.0.4692.71 allowed a remote malicious user to potentially hide the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
383
VMScore
CVE-2022-0120
Inappropriate implementation in Passwords in Google Chrome before 97.0.4692.71 allowed a remote malicious user to potentially leak cross-origin data via a malicious website.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-2157
Use after free in Interest groups in Google Chrome before 103.0.5060.53 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-2160
Insufficient policy enforcement in DevTools in Google Chrome on Windows before 103.0.5060.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from a user's local files via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-2162
Insufficient policy enforcement in File System API in Google Chrome on Windows before 103.0.5060.53 allowed a remote malicious user to bypass file system access via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-2164
Inappropriate implementation in Extensions API in Google Chrome before 103.0.5060.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-2165
Insufficient data validation in URL formatting in Google Chrome before 103.0.5060.53 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
Fedoraproject Fedora 35
Fedoraproject Fedora 36
NA
CVE-2022-3190
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark
Fedoraproject Fedora 36
Fedoraproject Fedora 37
NA
CVE-2022-30698
NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the "ghost domain names" attack. The vulnerability works by targeting an Unbound instance. Unbound is queried for a subdomain of a rogue domain name. The rogue nameserver returns del...
Nlnetlabs Unbound
Fedoraproject Fedora 35
Fedoraproject Fedora 36
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »