fedoraproject fedora 31 vulnerabilities and exploits

(subscribe to this query)

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compro...

Oracle Mysql Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.

Phpmyadmin Phpmyadmin Fedoraproject Fedora 29 Fedoraproject Fedora 30 Fedoraproject Fedora 31

1 EDB exploit

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to com...

Oracle Mysql Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...

Oracle Mysql Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

Trustwave ModSecurity 3.0.0 up to and including 3.0.3 allows an malicious user to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeader in transac...

Trustwave Modsecurity Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the malici...

Enigmail Enigmail Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

In radare2 prior to 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executable file, it's possible to execute arbitrary shell commands with the permissions of the victim. This vulnerability is due to improper handling ...

Radare Radare2 Fedoraproject Fedora 29 Fedoraproject Fedora 30 Fedoraproject Fedora 31

1 Github repository

In Mozilla Bleach prior to 3.11, a mutation XSS affects users calling bleach.clean with noscript and a raw tag in the allowed/whitelisted tags option.

Mozilla Bleach Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

1 Github repository

radare2 up to and including 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote malicious users to cause a denial of service (application crash) or possibly have unspeci...

Radare Radare2 Fedoraproject Fedora 30 Fedoraproject Fedora 31

In Dovecot prior to 2.3.9.2, an attacker can crash a push-notification driver with a crafted email when push notifications are used, because of a NULL Pointer Dereference. The email must use a group address as either the sender or the recipient.

Dovecot Dovecot Fedoraproject Fedora 30 Fedoraproject Fedora 31

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook