Vulnerabilities > Debian

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-25	CVE-2021-45341	Classic Buffer Overflow vulnerability in multiple products A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document. network low complexity librecad fedoraproject debian CWE-120	8.8
2022-01-24	CVE-2022-23852	Integer Overflow or Wraparound vulnerability in multiple products Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES. network low complexity libexpat-project netapp tenable debian oracle siemens CWE-190 critical	9.8
2022-01-21	CVE-2022-23837	Allocation of Resources Without Limits or Throttling vulnerability in multiple products In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. network low complexity contribsys debian CWE-770	7.5
2022-01-21	CVE-2021-23518	The package cached-path-relative before 1.1.0 are vulnerable to Prototype Pollution via the cache variable that is set as {} instead of Object.create(null) in the cachedPathRelative function, which allows access to the parent prototype properties when the object is used to create the cached relative path. network low complexity cached-path-relative-project debian critical	9.8
2022-01-21	CVE-2022-0319	Out-of-bounds Read in vim/vim prior to 8.2. local low complexity vim debian apple	5.5
2022-01-21	CVE-2022-0318	Out-of-bounds Write vulnerability in multiple products Heap-based Buffer Overflow in vim/vim prior to 8.2. network low complexity vim apple debian CWE-787 critical	9.8
2022-01-20	CVE-2021-45417	Out-of-bounds Write vulnerability in multiple products AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow. local low complexity advanced-intrusion-detection-environment-project redhat fedoraproject canonical debian CWE-787	7.8
2022-01-19	CVE-2022-21704	log4js-node is a port of log4js to node.js. local low complexity log4js-project debian	5.5
2022-01-19	CVE-2022-21699	IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. local low complexity ipython debian fedoraproject	8.8
2022-01-19	CVE-2021-23225	Cross-site Scripting vulnerability in multiple products Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the "new_username" field during creation of a new user via "Copy" method at user_admin.php. network low complexity cacti debian CWE-79	5.4

Vulnerabilities > Debian {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Debian"}]}

Vulnerabilities > Debian