fedoraproject fedora 32 vulnerabilities and exploits

(subscribe to this query)

A flaw was found in CImg in versions before 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can lead to an impact to application availability or data integrity.

Cimg Cimg Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

Use after free in Blink in Google Chrome before 89.0.4389.128 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Google Chrome Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

Trustwave ModSecurity 3.0.0 up to and including 3.0.3 allows an malicious user to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeader in transac...

Trustwave Modsecurity Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

Multiple path traversal vulnerabilities exist in smbserver.py in Impacket up to and including 0.9.22. An attacker that connects to a running smbserver instance can list and write to arbitrary files via ../ directory traversal. This could potentially be abused to achieve arbitrary...

Secureauth Impacket Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

1 Github repository

Insufficient validation of untrusted input in V8 in Google Chrome before 89.0.4389.128 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Google Chrome Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

1 Metasploit module1 Github repository1 Article

A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local attackers with control of the lp users to create files as root wit...

Suse Cups Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compro...

Oracle Mysql Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the malici...

Enigmail Enigmail Fedoraproject Fedora 30 Fedoraproject Fedora 31 Fedoraproject Fedora 32

An issue exists in Cacti 1.2.x up to and including 1.2.16. A SQL injection vulnerability in data_debug.php allows remote authenticated malicious users to execute arbitrary SQL commands via the site_id parameter. This can lead to remote code execution.

Cacti Cacti Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle prior to 3.10.2, 3.9.5, 3.8.8, 3.5.17.

Moodle Moodle Fedoraproject Fedora 32 Fedoraproject Fedora 33 Fedoraproject Fedora 34

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook