Fedoraproject: >> Fedora Security Vulnerabilities
Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
CVSS Score
7.5
EPSS Score
0.009
Published
2021-11-19
Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
CVSS Score
7.5
EPSS Score
0.001
Published
2021-11-19
vim is vulnerable to Heap-based Buffer Overflow
CVSS Score
8.0
EPSS Score
0.002
Published
2021-11-19
vim is vulnerable to Heap-based Buffer Overflow
CVSS Score
7.3
EPSS Score
0.004
Published
2021-11-19
vim is vulnerable to Use After Free
CVSS Score
7.3
EPSS Score
0.002
Published
2021-11-19
CVE-2021-44026
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search or search_params.
Known exploited
CVSS Score
9.8
EPSS Score
0.64
Published
2021-11-19
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachment's filename extension when displaying a MIME type warning message.
CVSS Score
6.1
EPSS Score
0.006
Published
2021-11-19
NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
CVSS Score
7.5
EPSS Score
0.005
Published
2021-11-18
NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
CVSS Score
7.5
EPSS Score
0.013
Published
2021-11-18
A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007
CVSS Score
9.8
EPSS Score
0.004
Published
2021-11-18