Vulnerabilities > Debian > Debian Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-09 | CVE-2022-24917 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. | 4.4 |
| 2022-03-09 | CVE-2022-24919 | Cross-site Scripting vulnerability in multiple products An authenticated user can create a link with reflected Javascript code inside it for graphs’ page and send it to other users. | 4.4 |
| 2022-03-08 | CVE-2022-24713 | regex is an implementation of regular expressions for the Rust language. | 7.5 |
| 2022-03-06 | CVE-2022-26505 | Authentication Bypass by Spoofing vulnerability in multiple products A DNS rebinding issue in ReadyMedia (formerly MiniDLNA) before 1.3.1 allows a remote web server to exfiltrate media files. | 7.4 |
| 2022-03-06 | CVE-2022-26495 | Integer Overflow or Wraparound vulnerability in multiple products In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. | 9.8 |
| 2022-03-06 | CVE-2022-26496 | Out-of-bounds Write vulnerability in multiple products In nbd-server in nbd before 3.24, there is a stack-based buffer overflow. | 9.8 |
| 2022-03-06 | CVE-2022-26490 | Classic Buffer Overflow vulnerability in multiple products st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. | 7.8 |
| 2022-03-05 | CVE-2022-24921 | Uncontrolled Recursion vulnerability in multiple products regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression. | 7.5 |
| 2022-03-04 | CVE-2021-20300 | A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. | 5.5 |
| 2022-03-04 | CVE-2021-20302 | A flaw was found in OpenEXR's TiledInputFile functionality. | 5.5 |