Vulnerabilities > Debian > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-01-16 CVE-2022-0235 Information Exposure vulnerability in multiple products
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
network
low complexity
node-fetch-project siemens debian CWE-200
6.1
2022-01-14 CVE-2022-0213 Heap-based Buffer Overflow vulnerability in multiple products
vim is vulnerable to Heap-based Buffer Overflow
local
low complexity
vim debian CWE-122
6.6
2022-01-13 CVE-2022-21682 Path Traversal vulnerability in multiple products
Flatpak is a Linux application sandboxing and distribution framework.
network
low complexity
flatpak fedoraproject redhat debian CWE-22
6.5
2022-01-13 CVE-2022-23134 Improper Authentication vulnerability in multiple products
After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well.
network
low complexity
zabbix fedoraproject debian CWE-287
5.3
2022-01-12 CVE-2021-37529 Double Free vulnerability in multiple products
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).
4.3
2022-01-12 CVE-2021-37530 Out-of-bounds Write vulnerability in multiple products
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.
4.3
2022-01-10 CVE-2021-36408 Use After Free vulnerability in multiple products
An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265.
local
low complexity
struktur debian CWE-416
5.5
2022-01-10 CVE-2021-36410 Out-of-bounds Write vulnerability in multiple products
A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265.
local
low complexity
struktur debian CWE-787
5.5
2022-01-10 CVE-2021-36411 Out-of-bounds Read vulnerability in multiple products
An issue has been found in libde265 v1.0.8 due to incorrect access control.
local
low complexity
struktur debian CWE-125
5.5
2022-01-10 CVE-2021-35452 Out-of-bounds Read vulnerability in multiple products
An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc.
network
low complexity
struktur debian CWE-125
6.5