High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-10	CVE-2022-25763	HTTP Request Smuggling vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 request validation of Apache Traffic Server allows an attacker to create smuggle or cache poison attacks. network low complexity apache debian fedoraproject CWE-444	7.5
2022-08-10	CVE-2022-28129	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server allows an attacker to send invalid headers. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-10	CVE-2022-31779	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 header parsing of Apache Traffic Server allows an attacker to smuggle requests. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-10	CVE-2022-31780	Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in HTTP/2 frame handling of Apache Traffic Server allows an attacker to smuggle requests. network low complexity apache debian fedoraproject CWE-20	7.5
2022-08-06	CVE-2022-37451	Release of Invalid Pointer or Reference vulnerability in multiple products Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc. network low complexity exim fedoraproject CWE-763	7.5
2022-08-05	CVE-2022-1158	Use After Free vulnerability in multiple products A flaw was found in KVM. local low complexity linux fedoraproject redhat CWE-416	7.8
2022-08-05	CVE-2022-1973	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. local low complexity linux fedoraproject netapp CWE-416	7.1
2022-08-03	CVE-2022-31197	SQL Injection vulnerability in multiple products PostgreSQL JDBC Driver (PgJDBC for short) allows Java programs to connect to a PostgreSQL database using standard, database independent Java code. network low complexity postgresql debian fedoraproject CWE-89	8.0
2022-08-02	CVE-2022-29154	Improper Input Validation vulnerability in multiple products An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. network high complexity samba fedoraproject CWE-20	7.4
2022-08-01	CVE-2022-35922	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Rust-WebSocket is a WebSocket (RFC6455) library written in Rust. network low complexity rust-websocket-project fedoraproject CWE-770	7.5