High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-29	CVE-2021-33503	Resource Exhaustion vulnerability in multiple products An issue was discovered in urllib3 before 1.26.5. network low complexity python fedoraproject oracle CWE-400	7.5
2021-06-24	CVE-2021-32708	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products Flysystem is an open source file storage library for PHP. network high complexity thephpleague fedoraproject CWE-367	8.1
2021-06-21	CVE-2021-29063	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath v1.0.0 through v1.2.1 when the mpmathify function is called. network low complexity mpmath fedoraproject CWE-770	7.5
2021-06-17	CVE-2021-34825	Cleartext Transmission of Sensitive Information vulnerability in multiple products Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on the local system. network low complexity quassel-irc fedoraproject CWE-319	7.5
2021-06-17	CVE-2021-3603	Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products PHPMailer 6.4.1 and earlier contain a vulnerability that can result in untrusted code being called (if such code is injected into the host project's scope by other means). network high complexity phpmailer-project fedoraproject CWE-829	8.1
2021-06-16	CVE-2021-34551	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products PHPMailer before 6.5.0 on Windows allows remote code execution if lang_path is untrusted data and has a UNC pathname. network high complexity phpmailer-project fedoraproject CWE-434	8.1
2021-06-16	CVE-2021-33813	XXE vulnerability in multiple products An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request. network low complexity jdom apache debian fedoraproject oracle CWE-611	7.5
2021-06-15	CVE-2021-30544	Use After Free vulnerability in multiple products Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-06-15	CVE-2021-30545	Use After Free vulnerability in multiple products Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-06-15	CVE-2021-30546	Use After Free vulnerability in multiple products Use after free in Autofill in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8