High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-03-21	CVE-2023-1528	Use After Free vulnerability in multiple products Use after free in Passwords in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2023-03-21	CVE-2023-1530	Use After Free vulnerability in multiple products Use after free in PDF in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2023-03-21	CVE-2023-1531	Use After Free vulnerability in multiple products Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject chromium CWE-416	8.8
2023-03-21	CVE-2023-1532	Out-of-bounds Read vulnerability in multiple products Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-125	8.8
2023-03-21	CVE-2023-1533	Use After Free vulnerability in multiple products Use after free in WebProtect in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2023-03-21	CVE-2023-1534	Out-of-bounds Read vulnerability in multiple products Out of bounds read in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-125	8.8
2023-03-21	CVE-2022-42332	Use After Free vulnerability in multiple products x86 shadow plus log-dirty mode use-after-free In environments where host assisted address translation is necessary but Hardware Assisted Paging (HAP) is unavailable, Xen will run guests in so called shadow mode. local low complexity xen debian fedoraproject CWE-416	7.8
2023-03-21	CVE-2022-42333	Allocation of Resources Without Limits or Throttling vulnerability in multiple products x86/HVM pinned cache attributes mis-handling T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] To allow cachability control for HVM guests with passed through devices, an interface exists to explicitly override defaults which would otherwise be put in place. network low complexity xen debian fedoraproject CWE-770	8.6
2023-03-06	CVE-2022-4904	Improper Validation of Specified Quantity in Input vulnerability in multiple products A flaw was found in the c-ares package. network low complexity c-ares-project redhat fedoraproject CWE-1284	8.6
2023-03-02	CVE-2023-25358	Use After Free vulnerability in multiple products A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows attackers to execute code remotely. network low complexity webkitgtk fedoraproject CWE-416	8.8