High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-14	CVE-2022-2963	Memory Leak vulnerability in multiple products A vulnerability found in jasper. network low complexity jasper-project fedoraproject redhat CWE-401	7.5
2022-10-14	CVE-2022-41674	Out-of-bounds Write vulnerability in multiple products An issue was discovered in the Linux kernel before 5.19.16. low complexity linux fedoraproject debian CWE-787	8.1
2022-10-14	CVE-2022-42720	Use After Free vulnerability in multiple products Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code. local low complexity linux fedoraproject debian CWE-416	7.8
2022-10-13	CVE-2022-42719	Use After Free vulnerability in multiple products A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code. low complexity linux fedoraproject debian CWE-416	8.8
2022-10-12	CVE-2022-39282	Use of Uninitialized Resource vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. network low complexity freerdp fedoraproject CWE-908	7.5
2022-10-12	CVE-2022-39283	Use of Uninitialized Resource vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. network low complexity freerdp fedoraproject CWE-908	7.5
2022-10-12	CVE-2022-3171	A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. network low complexity google fedoraproject	7.5
2022-10-11	CVE-2022-41032	NuGet Client Elevation of Privilege Vulnerability local low complexity microsoft fedoraproject	7.8
2022-10-06	CVE-2022-41556	Memory Leak vulnerability in multiple products A resource leak in gw_backend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior by clients. network low complexity lighttpd fedoraproject CWE-401	7.5
2022-09-30	CVE-2022-40313	Cross-site Scripting vulnerability in multiple products Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load. network low complexity moodle fedoraproject CWE-79	7.1