High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-17	CVE-2021-39240	An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. network low complexity haproxy debian fedoraproject	7.5
2021-08-17	CVE-2021-39242	Improper Handling of Exceptional Conditions vulnerability in multiple products An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. network low complexity haproxy debian fedoraproject CWE-755	7.5
2021-08-16	CVE-2021-33193	A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. network low complexity apache fedoraproject tenable oracle	7.5
2021-08-12	CVE-2021-38604	NULL Pointer Dereference vulnerability in multiple products In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. network low complexity gnu fedoraproject oracle CWE-476	7.5
2021-08-12	CVE-2021-38593	Out-of-bounds Write vulnerability in multiple products Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke). network low complexity qt fedoraproject CWE-787	7.5
2021-08-11	CVE-2021-36770	Uncontrolled Search Path Element vulnerability in multiple products Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library (in the current working directory) that preempts dynamic module loading. local low complexity p5-encode-project fedoraproject CWE-427	7.8
2021-08-11	CVE-2021-0002	Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure or denial of service via local access. local low complexity intel fedoraproject CWE-754	7.1
2021-08-10	CVE-2021-38512	HTTP Request Smuggling vulnerability in multiple products An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. network low complexity actix fedoraproject CWE-444	7.5
2021-08-07	CVE-2021-38166	Integer Overflow or Wraparound vulnerability in multiple products In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. local low complexity linux fedoraproject debian CWE-190	7.8
2021-08-07	CVE-2021-29923	Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. network low complexity golang oracle fedoraproject	7.5