Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-27	CVE-2021-30501	Reachable Assertion vulnerability in multiple products An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. local low complexity upx-project redhat fedoraproject CWE-617	5.5
2021-05-26	CVE-2021-30469	Use After Free vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. local low complexity podofo-project fedoraproject redhat CWE-416	5.5
2021-05-26	CVE-2021-30470	Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. local low complexity podofo-project redhat fedoraproject CWE-674	5.5
2021-05-26	CVE-2021-30471	Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. local low complexity podofo-project redhat fedoraproject CWE-674	5.5
2021-05-26	CVE-2021-20297	Improper Input Validation vulnerability in multiple products A flaw was found in NetworkManager in versions before 1.30.0. local low complexity gnome redhat fedoraproject CWE-20	5.5
2021-05-26	CVE-2021-20178	A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. local low complexity redhat fedoraproject	5.5
2021-05-26	CVE-2020-25673	A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system. local low complexity linux fedoraproject netapp	5.5
2021-05-26	CVE-2021-31924	Improper Authentication vulnerability in multiple products Yubico pam-u2f before 1.1.1 has a logic issue that, depending on the pam-u2f configuration and the application used, could lead to a local PIN bypass. low complexity yubico fedoraproject CWE-287	6.8
2021-05-24	CVE-2020-26555	Incorrect Authorization vulnerability in multiple products Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN. low complexity bluetooth fedoraproject intel CWE-863	5.4
2021-05-24	CVE-2020-26558	Improper Authentication vulnerability in multiple products Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authentication procedure) by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. high complexity bluetooth fedoraproject debian linux intel CWE-287	4.2