High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-16	CVE-2023-2725	Use After Free vulnerability in multiple products Use after free in Guest View in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject CWE-416	8.8
2023-05-16	CVE-2023-2726	Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. network low complexity google debian fedoraproject	8.8
2023-05-15	CVE-2023-2124	Out-of-bounds Write vulnerability in multiple products An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). local low complexity linux debian netapp CWE-787	7.8
2023-05-09	CVE-2023-2156	Reachable Assertion vulnerability in multiple products A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. network low complexity linux redhat fedoraproject debian CWE-617	7.5
2023-05-09	CVE-2023-31490	An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. network low complexity frrouting debian fedoraproject	7.5
2023-05-09	CVE-2023-31137	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products MaraDNS is open-source software that implements the Domain Name System (DNS). network low complexity maradns fedoraproject debian CWE-191	7.5
2023-05-03	CVE-2023-2460	Insufficient validation of untrusted input in Extensions in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to bypass file access checks via a crafted HTML page. network low complexity google debian fedoraproject	7.1
2023-05-03	CVE-2023-2461	Use After Free vulnerability in multiple products Use after free in OS Inputs in Google Chrome on ChromeOS prior to 113.0.5672.63 allowed a remote attacker who convinced a user to enage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. network low complexity google debian fedoraproject CWE-416	8.8
2023-04-25	CVE-2023-0045	Externally Controlled Reference to a Resource in Another Sphere vulnerability in multiple products The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. network low complexity linux debian netapp CWE-610	7.5
2023-04-24	CVE-2023-2007	Improper Locking vulnerability in multiple products The specific flaw exists within the DPT I2O Controller driver. local low complexity linux debian netapp CWE-667	7.8