High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-23	CVE-2021-39151	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products XStream is a simple library to serialize objects to XML and back again. network high complexity xstream-project fedoraproject debian netapp oracle CWE-434	8.5
2021-08-23	CVE-2021-39153	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products XStream is a simple library to serialize objects to XML and back again. network high complexity xstream-project fedoraproject debian netapp oracle CWE-434	8.5
2021-08-23	CVE-2021-39154	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products XStream is a simple library to serialize objects to XML and back again. network high complexity xstream-project fedoraproject debian netapp oracle CWE-434	8.5
2021-08-23	CVE-2020-36475	Incorrect Calculation of Buffer Size vulnerability in multiple products An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). network low complexity arm siemens debian CWE-131	7.5
2021-08-23	CVE-2020-36476	Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). network low complexity arm debian CWE-212	7.5
2021-08-23	CVE-2020-36478	Improper Certificate Validation vulnerability in multiple products An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). network low complexity arm siemens debian CWE-295	7.5
2021-08-17	CVE-2021-39240	An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. network low complexity haproxy debian fedoraproject	7.5
2021-08-17	CVE-2021-39242	Improper Handling of Exceptional Conditions vulnerability in multiple products An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. network low complexity haproxy debian fedoraproject CWE-755	7.5
2021-08-16	CVE-2021-22940	Use After Free vulnerability in multiple products Node.js before 16.6.1, 14.17.5, and 12.22.5 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior. network low complexity nodejs oracle netapp siemens debian CWE-416	7.5
2021-08-12	CVE-2021-38291	Reachable Assertion vulnerability in multiple products FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c. network low complexity ffmpeg debian CWE-617	7.5