14.4.1

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-21	CVE-2020-36329	Use After Free vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. network low complexity webmproject redhat netapp debian apple CWE-416 critical	9.8
2021-05-21	CVE-2020-36330	Out-of-bounds Read vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. network low complexity webmproject debian redhat netapp apple CWE-125 critical	9.1
2021-05-21	CVE-2020-36331	Out-of-bounds Read vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. network low complexity webmproject redhat netapp debian apple CWE-125 critical	9.1
2021-04-02	CVE-2021-1879	Cross-site Scripting vulnerability in Apple Watchos This issue was addressed by improved management of object lifetimes. network low complexity apple CWE-79	6.1
2021-03-26	CVE-2020-7463	Use After Free vulnerability in multiple products In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. local low complexity freebsd apple CWE-416	5.5
2021-02-16	CVE-2021-23841	NULL Pointer Dereference vulnerability in multiple products The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. network high complexity openssl debian tenable apple netapp oracle siemens CWE-476	5.9