Vulnerabilities > Debian > Debian Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-14 | CVE-2020-36322 | Incomplete Cleanup vulnerability in multiple products An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6, aka CID-5d069dbe8aaf. | 5.5 |
| 2021-04-13 | CVE-2021-29425 | Path Traversal vulnerability in multiple products In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path traversal), if the calling code would use the result to construct a path value. | 4.8 |
| 2021-04-11 | CVE-2021-30485 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in libezxml.a in ezXML 0.8.6. | 6.5 |
| 2021-04-09 | CVE-2021-30159 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. | 4.3 |
| 2021-04-09 | CVE-2021-30155 | Missing Authorization vulnerability in multiple products An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. | 4.3 |
| 2021-04-09 | CVE-2021-30152 | Improper Privilege Management vulnerability in multiple products An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. | 4.3 |
| 2021-04-08 | CVE-2021-3482 | Out-of-bounds Write vulnerability in multiple products A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. | 6.5 |
| 2021-04-07 | CVE-2020-36311 | An issue was discovered in the Linux kernel before 5.9. | 5.5 |
| 2021-04-07 | CVE-2020-36310 | Infinite Loop vulnerability in multiple products An issue was discovered in the Linux kernel before 5.8. | 5.5 |
| 2021-04-06 | CVE-2021-28688 | Improper Initialization vulnerability in multiple products The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. | 6.5 |