High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-09	CVE-2022-31033	Information Exposure vulnerability in multiple products The Mechanize library is used for automating interaction with websites. network low complexity mechanize-project fedoraproject CWE-200	7.5
2022-06-09	CVE-2022-26377	HTTP Request Smuggling vulnerability in multiple products Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. network low complexity apache fedoraproject netapp CWE-444	7.5
2022-06-09	CVE-2022-29404	Allocation of Resources Without Limits or Throttling vulnerability in multiple products In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size. network low complexity apache fedoraproject netapp CWE-770	7.5
2022-06-09	CVE-2022-30522	Allocation of Resources Without Limits or Throttling vulnerability in multiple products If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort. network low complexity apache netapp fedoraproject CWE-770	7.5
2022-06-09	CVE-2022-30556	Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer. network low complexity apache netapp fedoraproject	7.5
2022-06-09	CVE-2022-2000	Out-of-bounds Write vulnerability in multiple products Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject apple debian CWE-787	7.8
2022-06-09	CVE-2022-31214	Improper Privilege Management vulnerability in multiple products A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. local low complexity firejail-project fedoraproject debian CWE-269	7.8
2022-06-09	CVE-2022-1998	Use After Free vulnerability in multiple products A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user() call to fail in copy_event_to_user(). local low complexity linux fedoraproject redhat netapp CWE-416	7.8
2022-06-07	CVE-2022-1708	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. network low complexity kubernetes fedoraproject redhat CWE-770	7.5
2022-06-02	CVE-2022-32250	Use After Free vulnerability in multiple products net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free. local low complexity linux fedoraproject debian netapp CWE-416	7.8