High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-13	CVE-2022-32278	XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server. network low complexity xfce debian	8.8
2022-06-10	CVE-2022-31042	Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products Guzzle is an open source PHP HTTP client. network low complexity guzzlephp drupal debian CWE-212	7.5
2022-06-10	CVE-2022-31043	Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products Guzzle is an open source PHP HTTP client. network low complexity guzzlephp drupal debian CWE-212	7.5
2022-06-09	CVE-2022-2000	Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject apple debian	7.8
2022-06-09	CVE-2022-31214	Improper Privilege Management vulnerability in multiple products A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. local low complexity firejail-project fedoraproject debian CWE-269	7.8
2022-06-07	CVE-2019-9971	Improper Privilege Management vulnerability in multiple products PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. network low complexity 3cx debian CWE-269	8.8
2022-06-07	CVE-2019-9972	Command Injection vulnerability in multiple products PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an authenticated attacker to run arbitrary commands with the phonesystem user privileges because of "<space><space> followed by <shift><enter>" mishandling. network low complexity 3cx debian CWE-77	8.8
2022-06-02	CVE-2022-32250	Use After Free vulnerability in multiple products net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free. local low complexity linux fedoraproject debian netapp CWE-416	7.8
2022-06-02	CVE-2022-1419	Use After Free vulnerability in multiple products The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of drm_vgem_gem_object (created in vgem_gem_dumb_create) concurrently, and vgem_gem_dumb_create will access the freed drm_vgem_gem_object. local low complexity linux debian CWE-416	7.8
2022-06-02	CVE-2022-1652	Use After Free vulnerability in multiple products Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. local low complexity linux redhat debian netapp CWE-416	7.8