High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-30	CVE-2021-4185	Infinite Loop vulnerability in multiple products Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian oracle CWE-835	7.5
2021-12-25	CVE-2021-4166	Out-of-bounds Read vulnerability in multiple products vim is vulnerable to Out-of-bounds Read local low complexity vim redhat suse opensuse debian fedoraproject apple CWE-125	7.1
2021-12-23	CVE-2021-45469	Out-of-bounds Read vulnerability in multiple products In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry. local low complexity linux fedoraproject debian netapp CWE-125	7.8
2021-12-23	CVE-2021-38005	Use After Free vulnerability in multiple products Use after free in loader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-416	8.8
2021-12-23	CVE-2021-38006	Use After Free vulnerability in multiple products Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-416	8.8
2021-12-23	CVE-2021-38007	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-843	8.8
2021-12-23	CVE-2021-38008	Use After Free vulnerability in multiple products Use after free in media in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-416	8.8
2021-12-23	CVE-2021-38011	Use After Free vulnerability in multiple products Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-416	8.8
2021-12-23	CVE-2021-38012	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-843	8.8
2021-12-23	CVE-2021-38014	Out-of-bounds Write vulnerability in multiple products Out of bounds write in Swiftshader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-787	8.8