Fedora - CVE CyberSecurity Database News (Page 7)

Jan 12, 2023 API Exploit Fedoraproject Fedora

CVE-2022-3437 - Heap-Based Buffer Overflow Vulnerability Found in Samba: Impact on GSSAPI unwrap_des() and unwrap_des3() Routines in Heimdal

A critical heap-based buffer overflow vulnerability (CVE-2022-3437) has been discovered in Samba, specifically in the GSSAPI unwrap_des() and unwrap_des3() routines of the Heimdal

Nov 23, 2022 RCE Exploit Fedoraproject Fedora

CVE-2022-44789 - Remote Code Execution Vulnerability in Artifex MuJS Versions 1.. to 1.3.x Before 1.3.2 Due to a Logical Issue in O_getOwnPropertyDescriptor()

The CVE-2022-44789 vulnerability is a critical security issue affecting Artifex MuJS, a lightweight JavaScript engine used in various applications, including PDF readers and certain web

CVE-2022-45149 - Critical Vulnerability Discovered in Moodle: Insufficient Validation of HTTP Request Origin Leads to CSRF Attacks

Nov 23, 2022 CSRF Exploit PHP Fedoraproject Fedora

CVE-2022-45149 - Critical Vulnerability Discovered in Moodle: Insufficient Validation of HTTP Request Origin Leads to CSRF Attacks

A critical security vulnerability, identified as CVE-2022-45149, has been discovered in Moodle, a popular Learning Management System (LMS) used by educational institutions worldwide. This vulnerability

CVE-2022-45150: Reflected Cross-Site Scripting Vulnerability Discovered in Moodle Policy Tool

Nov 23, 2022 XSS Exploit Fedoraproject Fedora

CVE-2022-45150: Reflected Cross-Site Scripting Vulnerability Discovered in Moodle Policy Tool

A reflected cross-site scripting (XSS) vulnerability (CVE-2022-45150) has been discovered in Moodle, the popular open-source learning platform that assists educators in creating effective online learning

Nov 23, 2022 RCE XSS PHP Fedoraproject Fedora

CVE-2022-45151 - Stored-XSS vulnerability discovered in Moodle "social" user profile fields: Exploit details, code snippet, and original references

A stored Cross-Site Scripting (XSS) vulnerability (CVE-2022-45151) has been discovered in the popular e-learning platform, Moodle. This vulnerability exists due to insufficient sanitization of user-supplied