Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2023-08-11 CVE-2023-39946 Out-of-bounds Write vulnerability in multiple products
eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group.
network
low complexity
eprosima debian CWE-787
7.5
2023-08-11 CVE-2023-39947 Out-of-bounds Write vulnerability in multiple products
eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group.
network
low complexity
eprosima debian CWE-787
7.5
2023-08-11 CVE-2023-39948 eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group.
network
low complexity
eprosima debian
7.5
2023-08-11 CVE-2023-39949 Reachable Assertion vulnerability in multiple products
eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group.
network
low complexity
eprosima debian CWE-617
7.5
2023-08-11 CVE-2023-39417 SQL Injection vulnerability in multiple products
IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct (dollar quoting, '', or "").
network
low complexity
postgresql redhat debian CWE-89
8.8
2023-08-11 CVE-2023-39418 A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT.
network
low complexity
postgresql redhat debian
4.3
2023-08-11 CVE-2023-3823 XXE vulnerability in multiple products
In PHP versions 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8 various XML functions rely on libxml global state to track configuration variables, like whether external entities are loaded.
network
low complexity
php fedoraproject debian CWE-611
7.5
2023-08-11 CVE-2023-3824 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
In PHP version 8.0.* before 8.0.30,  8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE. 
network
low complexity
php fedoraproject debian CWE-119
critical
9.8
2023-08-11 CVE-2022-27635 Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel fedoraproject debian
6.7
2023-08-11 CVE-2022-36351 Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an unauthenticated user to potentially enable denial of service via adjacent access.
low complexity
intel fedoraproject debian
6.5