High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-21	CVE-2021-44142	Out-of-bounds Write vulnerability in multiple products The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. network low complexity samba debian canonical synology fedoraproject redhat CWE-787	8.8
2022-02-20	CVE-2022-0685	Use of Out-of-range Pointer Offset vulnerability in multiple products Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418. local low complexity vim fedoraproject debian apple CWE-823	7.8
2022-02-19	CVE-2016-1239	Unspecified vulnerability in Debian Duck duck before 0.10 did not properly handle loading of untrusted code from the current directory. network low complexity debian	7.5
2022-02-18	CVE-2020-25717	Improper Input Validation vulnerability in multiple products A flaw was found in the way Samba maps domain users to local users. network low complexity samba debian fedoraproject redhat canonical CWE-20	8.1
2022-02-18	CVE-2020-25719	Race Condition vulnerability in multiple products A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. network low complexity samba debian fedoraproject canonical redhat CWE-362	7.2
2022-02-18	CVE-2020-25722	Incorrect Authorization vulnerability in multiple products Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. network low complexity samba debian fedoraproject canonical CWE-863	8.8
2022-02-18	CVE-2021-20322	Use of Insufficiently Random Values vulnerability in multiple products A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. network high complexity linux fedoraproject debian netapp oracle CWE-330	7.4
2022-02-18	CVE-2022-25314	Integer Overflow or Wraparound vulnerability in multiple products In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. network low complexity libexpat-project debian fedoraproject oracle siemens CWE-190	7.5
2022-02-17	CVE-2021-44730	Link Following vulnerability in multiple products snapd 2.54.2 did not properly validate the location of the snap-confine binary. local low complexity canonical fedoraproject debian CWE-59	8.8
2022-02-17	CVE-2021-44731	Race Condition vulnerability in multiple products A race condition existed in the snapd 2.54.2 snap-confine binary when preparing a private mount namespace for a snap. local high complexity canonical fedoraproject debian CWE-362	7.8