High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-21	CVE-2021-28710	Improper Privilege Management vulnerability in multiple products certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address translation control structures (page tables) may (and, on suitable hardware, by default will) be shared between CPUs, for second-level translation (EPT), and IOMMUs. local low complexity xen fedoraproject CWE-269	8.8
2021-11-19	CVE-2021-21898	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad debian fedoraproject CWE-119	8.8
2021-11-19	CVE-2021-21899	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad fedoraproject debian CWE-119	8.8
2021-11-19	CVE-2021-21900	Use After Free vulnerability in multiple products A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad debian fedoraproject CWE-416	8.8
2021-11-19	CVE-2021-39921	NULL Pointer Dereference vulnerability in multiple products NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-476	7.5
2021-11-19	CVE-2021-39922	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-120	7.5
2021-11-19	CVE-2021-39924	Excessive Iteration vulnerability in multiple products Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-834	7.5
2021-11-19	CVE-2021-39925	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-120	7.5
2021-11-19	CVE-2021-39926	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-120	7.5
2021-11-19	CVE-2021-39929	Uncontrolled Recursion vulnerability in multiple products Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-674	7.5