Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

fedoraproject fedora 20 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3

CVE-2013-4410

ReviewBoard: has an access-control problem in REST API
Reviewboard ReviewboardFedoraproject Fedora 18Fedoraproject Fedora 19Fedoraproject Fedora 20
1.9
CVSSv2

CVE-2015-2152

Xen 4.5.x and previous versions enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by (1) setting the DISPLAY environment variable, wh...
Xen XenFedoraproject Fedora 20Fedoraproject Fedora 21Fedoraproject Fedora 22
5.9
CVSSv3

CVE-2015-3420

The ssl-proxy-openssl.c function in Dovecot prior to 2.2.17, when SSLv3 is disabled, allow remote malicious users to cause a denial of service (login process crash) via vectors related to handshake failures.
Dovecot DovecotFedoraproject Fedora 20Fedoraproject Fedora 21Fedoraproject Fedora 22
6.1
CVSSv3

CVE-2015-2793

Cross-site scripting (XSS) vulnerability in templates/openid-selector.tmpl in ikiwiki prior to 3.20150329 allows remote malicious users to inject arbitrary web script or HTML via the openid_identifier parameter in a verify action to ikiwiki.cgi.
Ikiwiki IkiwikiFedoraproject Fedora 20Fedoraproject Fedora 21Fedoraproject Fedora 22
5
CVSSv2

CVE-2015-0886

Integer overflow in the crypt_raw method in the key-stretching implementation in jBCrypt prior to 0.4 makes it easier for remote malicious users to determine cleartext values of password hashes via a brute-force attack against hashes associated with the maximum exponent.
Mindrot JbcryptFedoraproject Fedora 20Fedoraproject Fedora 21Fedoraproject Fedora 22
7.5
CVSSv2

CVE-2014-9328

ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20Fedoraproject Fedora 21Clamav Clamav
5
CVSSv2

CVE-2015-1463

ClamAV prior to 0.98.6 allows remote malicious users to cause a denial of service (crash) via a crafted petite packer file, related to an "incorrect compiler optimization."
Clamav ClamavFedoraproject Fedora 20Fedoraproject Fedora 21
7.5
CVSSv2

CVE-2015-1461

ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20Fedoraproject Fedora 21Clamav Clamav
7.5
CVSSv2

CVE-2015-1462

ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20Fedoraproject Fedora 21Clamav Clamav
7.5
CVSSv3

CVE-2010-5304

A NULL pointer dereference flaw was found in the way LibVNCServer prior to 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specially crafted ClientCutText message from a VNC client.
Libvncserver Project LibvncserverFedoraproject Fedora 19Fedoraproject Fedora 20Fedoraproject Fedora 21
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-3248thanhtungtntremote code executioncodepen embed blockCVE-2025-6354chris coyierCVE-2025-50025nitin yawalkarcode executionCVE-2025-50038CVE-2023-0386cross-site scriptingCVE-2025-6351
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook