Known Vulnerabilities for products from Fedora

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Fedora".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2015-3983 json The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not include the HTTPOnly flag in a Set-Cookie header, which makes it ea... 4.3 - MEDIUM 2015-05-14 2016-12-31
CVE-2015-1848 json The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes i... 6.8 - MEDIUM 2015-05-14 2023-11-07
CVE-2012-3500 json scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbit... 1.2 - LOW 2012-10-01 2023-02-13
CVE-2008-3283 json Multiple memory leaks in Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1... Not Provided 2008-08-29 2026-04-23
CVE-2008-3252 json Stack-based buffer overflow in the read_article function in getarticle.c in newsx 1.6 allows remote attackers to execute arbi... Not Provided 2008-07-21 2026-04-23
CVE-2008-2930 json Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 allow remote attackers... Not Provided 2008-08-29 2026-04-23
CVE-2008-2929 json Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express a... Not Provided 2008-08-29 2026-04-23

Known software with vulnerabilities from Fedora

Type Vendor Product Version
ApplicationFedoraPacemaker Configuration System0.9.137