11.3

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-24	CVE-2021-30858	Use After Free vulnerability in multiple products A use after free issue was addressed with improved memory management. network low complexity apple fedoraproject debian CWE-416	8.8
2021-08-24	CVE-2021-30860	Integer Overflow or Wraparound vulnerability in multiple products An integer overflow was addressed with improved input validation. local low complexity apple xpdfreader freedesktop CWE-190	7.8
2021-08-24	CVE-2021-36690	A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. network low complexity sqlite oracle apple	7.5
2021-08-05	CVE-2021-22925	Use of Uninitialized Resource vulnerability in multiple products curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. network low complexity haxx fedoraproject netapp apple oracle siemens splunk CWE-908	5.3
2021-07-20	CVE-2021-36976	Use After Free vulnerability in multiple products libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block). network low complexity libarchive fedoraproject apple splunk CWE-416	6.5
2021-02-16	CVE-2021-23841	NULL Pointer Dereference vulnerability in multiple products The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. network high complexity openssl debian tenable apple netapp oracle siemens CWE-476	5.9
2021-01-26	CVE-2020-36230	Reachable Assertion vulnerability in multiple products A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. network low complexity openldap debian apple apache CWE-617	7.5
2021-01-26	CVE-2020-36229	Type Confusion vulnerability in multiple products A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. network low complexity openldap debian apple CWE-843	7.5
2021-01-26	CVE-2020-36228	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service. network low complexity openldap debian apple CWE-191	7.5
2021-01-26	CVE-2020-36227	Infinite Loop vulnerability in multiple products A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. network low complexity openldap debian apple CWE-835	7.5