High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-24	CVE-2021-46829	Integer Overflow or Wraparound vulnerability in multiple products GNOME GdkPixbuf (aka GDK-PixBuf) before 2.42.8 allows a heap-based buffer overflow when compositing or clearing frames in GIF files, as demonstrated by io-gif-animation.c composite_frame. local low complexity gnome fedoraproject debian CWE-190	7.8
2022-07-19	CVE-2022-34169	Incorrect Conversion between Numeric Types vulnerability in multiple products The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. network low complexity apache debian oracle fedoraproject netapp azul CWE-681	7.5
2022-07-14	CVE-2022-32323	Out-of-bounds Write vulnerability in multiple products AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660. local low complexity autotrace-project fedoraproject CWE-787	7.3
2022-07-14	CVE-2022-32212	OS Command Injection vulnerability in multiple products A OS Command Injection vulnerability exists in Node.js versions <14.20.0, <16.20.0, <18.5.0 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests allowing rebinding attacks. network high complexity nodejs debian fedoraproject siemens CWE-78	8.1
2022-07-12	CVE-2022-29187	Improper Ownership Management vulnerability in multiple products Git is a distributed revision control system. local low complexity git-scm fedoraproject apple debian CWE-282	7.8
2022-07-08	CVE-2022-2345	Use After Free vulnerability in multiple products Use After Free in GitHub repository vim/vim prior to 9.0.0046. local low complexity vim fedoraproject CWE-416	7.8
2022-07-08	CVE-2022-2344	Heap-based Buffer Overflow vulnerability in multiple products Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045. local low complexity vim fedoraproject CWE-122	7.8
2022-07-08	CVE-2022-2343	Heap-based Buffer Overflow vulnerability in multiple products Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044. local low complexity vim fedoraproject CWE-122	7.8
2022-07-06	CVE-2022-31129	moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. network low complexity momentjs fedoraproject debian	7.5
2022-07-05	CVE-2022-31116	Always-Incorrect Control Flow Implementation vulnerability in multiple products UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. network low complexity ultrajson-project fedoraproject CWE-670	7.5