12.0

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-13	CVE-2023-3215	Use After Free vulnerability in multiple products Use after free in WebRTC in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-416	8.8
2023-06-13	CVE-2023-3216	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-843	8.8
2023-06-13	CVE-2023-3217	Use After Free vulnerability in multiple products Use after free in WebXR in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-416	8.8
2023-06-13	CVE-2023-20867	A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. local high complexity vmware debian fedoraproject	3.9
2023-06-07	CVE-2023-0666	Out-of-bounds Write vulnerability in multiple products Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. network low complexity wireshark debian CWE-787	6.5
2023-06-07	CVE-2023-0668	Out-of-bounds Write vulnerability in multiple products Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. network low complexity wireshark debian CWE-787	6.5
2023-06-06	CVE-2023-2602	Memory Leak vulnerability in multiple products A vulnerability was found in the pthread_create() function in libcap. local low complexity libcap-project redhat debian fedoraproject CWE-401	3.3
2023-06-05	CVE-2023-3079	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian apple linux couchbase CWE-843	8.8
2023-05-30	CVE-2023-2952	Infinite Loop vulnerability in multiple products XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file network low complexity wireshark debian CWE-835	6.5
2023-05-26	CVE-2023-2898	NULL Pointer Dereference vulnerability in multiple products There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. local high complexity linux debian netapp CWE-476	4.7