High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-16	CVE-2022-38362	Unspecified vulnerability in Apache Apache-Airflow-Providers-Docker Apache Airflow Docker's Provider prior to 3.0.0 shipped with an example DAG that was vulnerable to (authenticated) remote code exploit of code on the Airflow worker host. network low complexity apache	8.8
2022-08-15	CVE-2022-37400	Use of Insufficiently Random Values vulnerability in Apache Openoffice Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. network low complexity apache CWE-330	8.8
2022-08-15	CVE-2022-37401	Insufficient Entropy vulnerability in Apache Openoffice Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. network low complexity apache CWE-331	8.8
2022-08-10	CVE-2021-37150	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-10	CVE-2022-25763	HTTP Request Smuggling vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 request validation of Apache Traffic Server allows an attacker to create smuggle or cache poison attacks. network low complexity apache debian fedoraproject CWE-444	7.5
2022-08-10	CVE-2022-28129	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-10	CVE-2022-31778	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in handling the Transfer-Encoding header of Apache Traffic Server allows an attacker to poison the cache. network low complexity apache debian CWE-20	7.5
2022-08-10	CVE-2022-31779	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 header parsing of Apache Traffic Server allows an attacker to smuggle requests. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-10	CVE-2022-31780	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-09	CVE-2022-35724	Infinite Loop vulnerability in Apache Avro It is possible to provide data to be read that leads the reader to loop in cycles endlessly, consuming CPU. network low complexity apache CWE-835	7.5