Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-07-14	CVE-2021-24119	Information Exposure Through Discrepancy vulnerability in multiple products In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX. network low complexity arm fedoraproject debian CWE-203	4.9
2021-07-12	CVE-2021-32703	Nextcloud Server is a Nextcloud package that handles data storage. network low complexity nextcloud fedoraproject	5.3
2021-07-12	CVE-2021-32678	Nextcloud Server is a Nextcloud package that handles data storage. network low complexity nextcloud fedoraproject	5.3
2021-06-30	CVE-2021-3630	Out-of-bounds Write vulnerability in multiple products An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. local low complexity djvulibre-project debian fedoraproject CWE-787	5.5
2021-06-28	CVE-2020-28200	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension. network low complexity dovecot fedoraproject CWE-770	4.3
2021-06-28	CVE-2021-33515	Command Injection vulnerability in multiple products The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. network high complexity dovecot fedoraproject debian CWE-77	4.8
2021-06-28	CVE-2021-29157	Path Traversal vulnerability in multiple products Dovecot before 2.3.15 allows ../ Path Traversal. local low complexity dovecot fedoraproject CWE-22	5.5
2021-06-22	CVE-2021-0561	Out-of-bounds Write vulnerability in multiple products In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. local low complexity google fedoraproject debian CWE-787	5.5
2021-06-12	CVE-2021-31811	Allocation of Resources Without Limits or Throttling vulnerability in multiple products In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. local low complexity apache fedoraproject oracle CWE-770	5.5
2021-06-12	CVE-2021-31812	Infinite Loop vulnerability in multiple products In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. local low complexity apache fedoraproject oracle CWE-835	5.5