High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-02	CVE-2022-0443	Use After Free vulnerability in multiple products Use After Free in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject debian CWE-416	7.8
2022-02-01	CVE-2022-0417	Heap-based Buffer Overflow vulnerability in multiple products Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject debian CWE-122	7.8
2022-02-01	CVE-2021-43859	Resource Exhaustion vulnerability in multiple products XStream is an open source java library to serialize objects to XML and back again. network low complexity xstream-project fedoraproject debian oracle CWE-400	7.5
2022-02-01	CVE-2021-46669	Use After Free vulnerability in multiple products MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used. network low complexity mariadb fedoraproject debian CWE-416	7.5
2022-01-30	CVE-2022-0408	Stack-based Buffer Overflow vulnerability in multiple products Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject debian CWE-121	7.8
2022-01-30	CVE-2022-0413	Use After Free vulnerability in multiple products Use After Free in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject debian CWE-416	7.8
2022-01-29	CVE-2022-24122	Use After Free vulnerability in multiple products kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace. local low complexity linux netapp fedoraproject CWE-416	7.8
2022-01-28	CVE-2022-0393	Out-of-bounds Read vulnerability in multiple products Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. local low complexity vim fedoraproject CWE-125	7.1
2022-01-26	CVE-2022-23990	Integer Overflow or Wraparound vulnerability in multiple products Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. network low complexity libexpat-project tenable oracle debian fedoraproject siemens CWE-190	7.5
2022-01-25	CVE-2022-23033	Improper Resource Shutdown or Release vulnerability in multiple products arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm (p2m_remove_mapping, guest_physmap_remove_page, and p2m_set_entry with mfn set to INVALID_MFN) do not actually clear the pagetable entry if the entry doesn't have the valid bit set. local low complexity xen fedoraproject debian CWE-404	7.8