Vulnerabilities > Debian > Debian Linux

DATE CVE VULNERABILITY TITLE RISK
2021-08-23 CVE-2021-39147 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-39148 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-39149 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-39151 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-39153 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-39154 XStream is a simple library to serialize objects to XML and back again. 8.5
8.5
2021-08-23 CVE-2021-3693 Cross-site Scripting vulnerability in multiple products
LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM.
network
low complexity
ledgersmb debian CWE-79
critical
 9.6
9.6
2021-08-23 CVE-2021-3694 Cross-site Scripting vulnerability in multiple products
LedgerSMB does not sufficiently HTML-encode error messages sent to the browser.
network
low complexity
ledgersmb debian CWE-79
critical
 9.6
9.6
2021-08-23 CVE-2021-3731 Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products
LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to 'clickjacking'.
network
low complexity
ledgersmb debian CWE-1021
4.7
4.7
2021-08-23 CVE-2021-37750 NULL Pointer Dereference vulnerability in multiple products
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field. 		6.5
6.5