High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-26	CVE-2022-3200	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Internals in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-787	8.8
2022-09-26	CVE-2022-3204	Resource Exhaustion vulnerability in multiple products A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation Attack) has been discovered in various DNS resolving software. network low complexity nlnetlabs fedoraproject CWE-400	7.5
2022-09-25	CVE-2022-3297	Use After Free vulnerability in multiple products Use After Free in GitHub repository vim/vim prior to 9.0.0579. local low complexity vim fedoraproject CWE-416	7.8
2022-09-25	CVE-2022-3296	Stack-based Buffer Overflow vulnerability in multiple products Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. local low complexity vim fedoraproject CWE-121	7.8
2022-09-23	CVE-2022-40188	Algorithmic Complexity vulnerability in multiple products Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption) because of algorithmic complexity. network low complexity nic fedoraproject debian CWE-407	7.5
2022-09-23	CVE-2022-41322	Improper Encoding or Escaping of Output vulnerability in multiple products In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. local low complexity kitty-project fedoraproject CWE-116	7.8
2022-09-22	CVE-2022-1941	A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of memory failures. network low complexity google fedoraproject debian	7.5
2022-09-22	CVE-2022-3256	Use After Free vulnerability in multiple products Use After Free in GitHub repository vim/vim prior to 9.0.0530. local low complexity vim fedoraproject debian CWE-416	7.8
2022-09-21	CVE-2022-38177	Memory Leak vulnerability in multiple products By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. network low complexity isc debian fedoraproject netapp CWE-401	7.5
2022-09-21	CVE-2022-38178	Memory Leak vulnerability in multiple products By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. network low complexity isc debian fedoraproject netapp CWE-401	7.5