Vulnerabilities > Debian > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-22 CVE-2022-41794 Heap-based Buffer Overflow vulnerability in multiple products
A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0.
network
low complexity
openimageio debian CWE-122
critical
9.8
2022-12-22 CVE-2022-41837 Return of Stack Variable Address vulnerability in multiple products
An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian CWE-562
critical
9.8
2022-12-22 CVE-2022-41838 Heap-based Buffer Overflow vulnerability in multiple products
A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian CWE-122
critical
9.8
2022-12-20 CVE-2022-47629 Integer Overflow or Wraparound vulnerability in multiple products
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
network
low complexity
gnupg debian CWE-190
critical
9.8
2022-12-20 CVE-2022-23537 Heap-based Buffer Overflow vulnerability in multiple products
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE.
network
low complexity
teluu debian CWE-122
critical
9.8
2022-12-09 CVE-2022-23468 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in xrdp_login_wnd_create() function.
network
low complexity
neutrinolabs debian CWE-120
critical
9.8
2022-12-09 CVE-2022-23477 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in audin_send_open() function.
network
low complexity
neutrinolabs debian CWE-120
critical
9.8
2022-12-09 CVE-2022-23478 Out-of-bounds Write vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Write in xrdp_mm_trans_process_drdynvc_channel_open() function.
network
low complexity
neutrinolabs debian CWE-787
critical
9.8
2022-12-09 CVE-2022-23479 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in xrdp_mm_chan_data_in() function.
network
low complexity
neutrinolabs debian CWE-120
critical
9.8
2022-12-09 CVE-2022-23480 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in devredir_proc_client_devlist_announce_req() function.
network
low complexity
neutrinolabs debian CWE-120
critical
9.8