Vulnerabilities > Debian > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-04-06 CVE-2021-30151 Cross-site Scripting vulnerability in multiple products
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
network
low complexity
contribsys debian CWE-79
6.1
6.1
2021-04-02 CVE-2020-10001 Improper Input Validation vulnerability in multiple products
An input validation issue was addressed with improved memory handling.
local
low complexity
apple debian CWE-20
5.5
5.5
2021-04-02 CVE-2021-30002 Memory Leak vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists.
local
low complexity
linux debian CWE-401
6.2
6.2
2021-04-01 CVE-2021-22876 Information Exposure vulnerability in multiple products
curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information to an Unauthorized Actor" by leaking credentials in the HTTP Referer: header. 		5.3
5.3
2021-04-01 CVE-2021-20296 A flaw was found in OpenEXR in versions before 3.0.0-beta.
network
low complexity
openexr debian
5.3
5.3
2021-03-31 CVE-2021-3479 There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta.
local
low complexity
openexr debian
5.5
5.5
2021-03-31 CVE-2021-3478 There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta.
local
low complexity
openexr debian
5.5
5.5
2021-03-31 CVE-2021-3477 There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta.
local
low complexity
openexr debian
5.5
5.5
2021-03-30 CVE-2021-29650 An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject debian
5.5
5.5
2021-03-30 CVE-2021-29647 Missing Initialization of Resource vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject debian CWE-909
5.5
5.5