Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-04	CVE-2023-1823	Inappropriate implementation in FedCM in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. network low complexity google fedoraproject debian	6.5
2023-04-03	CVE-2022-36440	Reachable Assertion vulnerability in multiple products A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. network low complexity frrouting fedoraproject debian CWE-617	7.5
2023-03-31	CVE-2023-28879	Out-of-bounds Write vulnerability in multiple products In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. network low complexity artifex debian CWE-787 critical	9.8
2023-03-31	CVE-2023-28755	A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. network low complexity ruby-lang debian fedoraproject	5.3
2023-03-31	CVE-2023-28756	A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. network low complexity ruby-lang debian fedoraproject	5.3
2023-03-30	CVE-2023-27535	Improper Authentication vulnerability in multiple products An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. network high complexity haxx fedoraproject debian netapp splunk CWE-287	5.9
2023-03-30	CVE-2023-27536	Improper Authentication vulnerability in multiple products An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to check for changes in the CURLOPT_GSSAPI_DELEGATION option. network high complexity haxx fedoraproject debian netapp splunk CWE-287	5.9
2023-03-30	CVE-2023-27538	Improper Authentication vulnerability in multiple products An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. local low complexity haxx fedoraproject debian netapp broadcom splunk CWE-287	5.5
2023-03-28	CVE-2022-0194	Out-of-bounds Write vulnerability in multiple products This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. network low complexity netatalk debian CWE-787 critical	9.8
2023-03-28	CVE-2022-23121	Improper Handling of Exceptional Conditions vulnerability in multiple products This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. network low complexity netatalk debian CWE-755 critical	9.8