High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-20	CVE-2021-44224	NULL Pointer Dereference vulnerability in multiple products A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). network low complexity apache fedoraproject debian tenable oracle apple CWE-476	8.2
2021-12-19	CVE-2021-4136	vim is vulnerable to Heap-based Buffer Overflow local low complexity vim fedoraproject apple	7.8
2021-12-17	CVE-2021-41500	Incorrect Comparison vulnerability in multiple products Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects. network low complexity cvxopt-project fedoraproject CWE-697	7.5
2021-12-17	CVE-2021-4008	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. local low complexity x-org fedoraproject debian CWE-119	7.8
2021-12-17	CVE-2021-4009	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. local low complexity x-org fedoraproject debian CWE-119	7.8
2021-12-17	CVE-2021-4010	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. local low complexity x-org fedoraproject debian CWE-119	7.8
2021-12-17	CVE-2021-4011	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. local low complexity x-org fedoraproject debian CWE-119	7.8
2021-12-15	CVE-2021-45078	Out-of-bounds Write vulnerability in multiple products stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. local low complexity gnu fedoraproject redhat debian netapp CWE-787	7.8
2021-12-15	CVE-2021-43518	Classic Buffer Overflow vulnerability in multiple products Teeworlds up to and including 0.7.5 is vulnerable to Buffer Overflow. local low complexity teeworlds fedoraproject CWE-120	7.8
2021-12-14	CVE-2021-4104	Deserialization of Untrusted Data vulnerability in multiple products JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. network high complexity apache fedoraproject redhat oracle CWE-502	7.5