U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

CVSS v3.1 Statistics for Fedora Project as of 07/14/2023

0
40
 
5
24
Reference
0-69.9%
Reference
60.0
Contributor
70-94.9%
 
Provider
95-100%
CVE CNA Value Alignment NIST Value Reason
CVE-2021-32494   (5 of 8) Attack Vector (AV) Network Attack Vector (AV) Network
Attack Complexity (AC) Low Attack Complexity (AC) Low
Privileges Required (PR) None Privileges Required (PR) None
User Interaction (UI) None User Interaction (UI) None
Scope (S) Changed Scope (S) Unchanged Unclear if Scope change occurs. No identification of security boundaries being crossed.
Confidentiality (C) High Confidentiality (C) None No confidentiality impacts identified
Integrity (I) High Integrity (I) None No integrity impacts identified
Availability (A) High Availability (A) High
CVE-2021-32495   (6 of 8) Attack Vector (AV) Network Attack Vector (AV) Network
Attack Complexity (AC) Low Attack Complexity (AC) Low
Privileges Required (PR) None Privileges Required (PR) None
User Interaction (UI) None User Interaction (UI) None
Scope (S) Changed Scope (S) Unchanged Unclear if Scope change occurs. No identification of security boundaries being crossed.
Confidentiality (C) High Confidentiality (C) High
Integrity (I) High Integrity (I) None No integrity impacts identified
Availability (A) High Availability (A) High
CVE-2021-33796   (5 of 8) Attack Vector (AV) Network Attack Vector (AV) Network
Attack Complexity (AC) Low Attack Complexity (AC) Low
Privileges Required (PR) None Privileges Required (PR) None
User Interaction (UI) None User Interaction (UI) None
Scope (S) Changed Scope (S) Unchanged Unclear if Scope change occurs. No identification of security boundaries being crossed.
Confidentiality (C) High Confidentiality (C) None No confidentiality impacts identified
Integrity (I) High Integrity (I) None No integrity impacts identified
Availability (A) High Availability (A) High
CVE-2022-0137   (4 of 8) Warning Attack Vector (AV) Network Attack Vector (AV) Local AV:L due to file parsed local to vulnerable component
Attack Complexity (AC) High Attack Complexity (AC) Low No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
Privileges Required (PR) None Privileges Required (PR) None
User Interaction (UI) Required User Interaction (UI) Required
Scope (S) Unchanged Scope (S) Unchanged
Confidentiality (C) High Confidentiality (C) None No confidentiality impacts identified
Integrity (I) High Integrity (I) None No integrity impacts identified
Availability (A) High Availability (A) High
CVE-2022-3675   (4 of 8) Warning Attack Vector (AV) Physical Attack Vector (AV) Local AV:L due to file parsed local to vulnerable component
Attack Complexity (AC) Low Attack Complexity (AC) Low
Privileges Required (PR) None Privileges Required (PR) Low Local attacker typically implies some privilege level needed
User Interaction (UI) None User Interaction (UI) None
Scope (S) Changed Scope (S) Unchanged Unclear if Scope change occurs. No identification of security boundaries being crossed.
Confidentiality (C) None Confidentiality (C) None
Integrity (I) Low Integrity (I) High No limiting factors for integrity listed
Availability (A) None Availability (A) None