High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-03	CVE-2020-14372	Incomplete Blacklist vulnerability in multiple products A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. local high complexity gnu redhat fedoraproject netapp CWE-184	7.5
2021-03-03	CVE-2021-26813	markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular expression denial of service vulnerability. network low complexity markdown2-project fedoraproject	7.5
2021-03-03	CVE-2021-27923	Improper Input Validation vulnerability in multiple products Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large. network low complexity python fedoraproject CWE-20	7.5
2021-03-03	CVE-2021-27922	Improper Input Validation vulnerability in multiple products Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large. network low complexity python fedoraproject CWE-20	7.5
2021-03-03	CVE-2021-27921	Improper Input Validation vulnerability in multiple products Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large. network low complexity python fedoraproject CWE-20	7.5
2021-02-27	CVE-2020-35662	Improper Certificate Validation vulnerability in multiple products In SaltStack Salt before 3002.5, when authenticating to services using certain modules, the SSL certificate is not always validated. network high complexity saltstack fedoraproject debian CWE-295	7.4
2021-02-27	CVE-2020-28243	Command Injection vulnerability in multiple products An issue was discovered in SaltStack Salt before 3002.5. local low complexity saltstack fedoraproject debian CWE-77	7.8
2021-02-26	CVE-2021-27803	A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. high complexity w1-fi fedoraproject debian	7.5
2021-02-25	CVE-2021-26701	.NET Core Remote Code Execution Vulnerability network high complexity microsoft fedoraproject	8.1
2021-02-24	CVE-2020-11988	Server-Side Request Forgery (SSRF) vulnerability in multiple products Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. network low complexity apache fedoraproject CWE-918	8.2