Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-26 CVE-2021-3563 Incorrect Authorization vulnerability in multiple products
A flaw was found in openstack-keystone.
network
high complexity
openstack debian redhat CWE-863
7.4
2022-08-26 CVE-2021-3864 Improper Access Control vulnerability in multiple products
A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants.
local
high complexity
linux debian redhat CWE-284
7.0
2022-08-25 CVE-2022-0135 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer).
7.8
2022-08-25 CVE-2022-2255 Insufficient Verification of Data Authenticity vulnerability in multiple products
A vulnerability was found in mod_wsgi.
network
low complexity
modwsgi debian CWE-345
7.5
2022-08-25 CVE-2022-22728 Classic Buffer Overflow vulnerability in multiple products
A flaw in Apache libapreq2 versions 2.16 and earlier could cause a buffer overflow while processing multipart form uploads.
network
low complexity
apache fedoraproject debian CWE-120
7.5
2022-08-24 CVE-2022-32893 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write issue was addressed with improved bounds checking.
8.8
2022-08-24 CVE-2021-3999 Off-by-one Error vulnerability in multiple products
A flaw was found in glibc.
local
low complexity
gnu debian netapp CWE-193
7.8
2022-08-24 CVE-2021-4037 Improper Access Control vulnerability in multiple products
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group.
local
low complexity
linux debian CWE-284
7.8
2022-08-24 CVE-2021-4204 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation.
local
low complexity
linux debian redhat netapp CWE-119
7.1
2022-08-24 CVE-2022-2978 Use After Free vulnerability in multiple products
A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following call to function nilfs_mdt_destroy.
local
low complexity
linux debian CWE-416
7.8