Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2022-12-14 CVE-2022-46343 Use After Free vulnerability in multiple products
A vulnerability was found in X.Org.
network
low complexity
x-org fedoraproject debian CWE-416
8.8
8.8
2022-12-14 CVE-2022-46344 Out-of-bounds Read vulnerability in multiple products
A vulnerability was found in X.Org.
network
low complexity
x-org fedoraproject debian CWE-125
8.8
8.8
2022-12-14 CVE-2022-4283 Use After Free vulnerability in multiple products
A vulnerability was found in X.Org.
local
low complexity
x-org fedoraproject redhat debian CWE-416
7.8
7.8
2022-12-14 CVE-2022-23520 rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications.
network
low complexity
rubyonrails debian
6.1
6.1
2022-12-14 CVE-2022-23527 Open Redirect vulnerability in multiple products
mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server.
network
low complexity
openidc debian CWE-601
6.1
6.1
2022-12-14 CVE-2022-23517 rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications.
network
low complexity
rubyonrails debian
7.5
7.5
2022-12-14 CVE-2022-23518 rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications.
network
low complexity
rubyonrails debian loofah-project
6.1
6.1
2022-12-14 CVE-2022-23519 Cross-site Scripting vulnerability in multiple products
rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications.
network
low complexity
rubyonrails debian CWE-79
6.1
6.1
2022-12-14 CVE-2022-23515 Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri.
network
low complexity
loofah-project debian
6.1
6.1
2022-12-13 CVE-2022-45685 Out-of-bounds Write vulnerability in multiple products
A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data.
network
low complexity
jettison-project debian CWE-787
7.5
7.5