Known Vulnerabilities for products from Fedora

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Fedora".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2015-3983 The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not include the HTTPOnly flag in a Set-Cookie header, which makes it ea... 4.3 - MEDIUM 2015-05-14 2016-12-31
CVE-2015-1848 The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes i... 6.8 - MEDIUM 2015-05-14 2023-11-07
CVE-2012-3500 scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbit... 1.2 - LOW 2012-10-01 2023-02-13
CVE-2008-3283 Multiple memory leaks in Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1... 7.8 - HIGH 2008-08-29 2017-09-29
CVE-2008-3252 Stack-based buffer overflow in the read_article function in getarticle.c in newsx 1.6 allows remote attackers to execute arbi... 10 - HIGH 2008-07-21 2017-08-08
CVE-2008-2930 Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 allow remote attackers... 7.1 - HIGH 2008-08-29 2017-09-29
CVE-2008-2929 Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express a... 4.3 - MEDIUM 2008-08-29 2017-09-29

Known software with vulnerabilities from Fedora

Type Vendor Product Version
ApplicationFedoraPacemaker Configuration System0.9.137