11.0

DATE	CVE	VULNERABILITY TITLE	RISK
2024-04-16	CVE-2022-24809	NULL Pointer Dereference vulnerability in multiple products net-snmp provides various tools relating to the Simple Network Management Protocol. network low complexity net-snmp fedoraproject debian redhat CWE-476	6.5
2024-02-11	CVE-2024-25714	Information Exposure Through Discrepancy vulnerability in multiple products In Rhonabwy through 1.1.13, HMAC signature verification uses a strcmp function that is vulnerable to side-channel attacks, because it stops the comparison when the first difference is spotted in the two signatures. network low complexity rhonabwy-project debian CWE-203 critical	9.8
2024-01-16	CVE-2024-0567	Improper Verification of Cryptographic Signature vulnerability in multiple products A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. network low complexity gnu fedoraproject netapp debian CWE-347	7.5
2023-12-21	CVE-2023-7024	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-787	8.8
2023-12-19	CVE-2023-50761	The signature of a digitally signed S/MIME email message may optionally specify the signature creation date and time. network low complexity mozilla debian	4.3
2023-12-19	CVE-2023-50762	When processing a PGP/MIME payload that contains digitally signed text, the first paragraph of the text was never shown to the user. network low complexity mozilla debian	4.3
2023-12-19	CVE-2023-6856	Out-of-bounds Write vulnerability in multiple products The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. network low complexity mozilla debian CWE-787	8.8
2023-12-19	CVE-2023-6857	Race Condition vulnerability in multiple products When resolving a symlink, a race may occur where the buffer passed to `readlink` may actually be smaller than necessary. network high complexity mozilla debian CWE-362	5.3
2023-12-19	CVE-2023-6858	Out-of-bounds Write vulnerability in multiple products Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. network low complexity mozilla debian CWE-787	8.8
2023-12-19	CVE-2023-6859	Use After Free vulnerability in multiple products A use-after-free condition affected TLS socket creation when under memory pressure. network low complexity mozilla debian CWE-416	8.8