Vulnerabilities > Debian > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-16 | CVE-2022-0235 | Information Exposure vulnerability in multiple products node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor | 6.1 |
| 2022-01-14 | CVE-2022-0213 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 6.6 |
| 2022-01-13 | CVE-2022-21682 | Path Traversal vulnerability in multiple products Flatpak is a Linux application sandboxing and distribution framework. | 6.5 |
| 2022-01-13 | CVE-2022-23134 | Improper Authentication vulnerability in multiple products After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well. | 5.3 |
| 2022-01-12 | CVE-2021-37529 | Double Free vulnerability in multiple products A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent). | 4.3 |
| 2022-01-12 | CVE-2021-37530 | Out-of-bounds Write vulnerability in multiple products A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c. | 4.3 |
| 2022-01-10 | CVE-2021-36408 | Use After Free vulnerability in multiple products An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when decoding file using dec265. | 5.5 |
| 2022-01-10 | CVE-2021-36410 | Out-of-bounds Write vulnerability in multiple products A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265. | 5.5 |
| 2022-01-10 | CVE-2021-36411 | Out-of-bounds Read vulnerability in multiple products An issue has been found in libde265 v1.0.8 due to incorrect access control. | 5.5 |
| 2022-01-10 | CVE-2021-35452 | Out-of-bounds Read vulnerability in multiple products An Incorrect Access Control vulnerability exists in libde265 v1.0.8 due to a SEGV in slice.cc. | 6.5 |