High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-03	CVE-2021-30624	Use After Free vulnerability in multiple products Chromium: CVE-2021-30624 Use after free in Autofill network low complexity fedoraproject microsoft CWE-416	8.8
2021-09-03	CVE-2021-23437	Out-of-bounds Read vulnerability in multiple products The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function. network low complexity python fedoraproject CWE-125	7.5
2021-09-03	CVE-2021-40490	Race Condition vulnerability in multiple products A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13. local high complexity linux fedoraproject debian netapp CWE-362	7.0
2021-09-01	CVE-2021-33582	Algorithmic Complexity vulnerability in multiple products Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service (multiple-minute daemon hang) via input that is mishandled during hash-table interaction. network low complexity cyrus fedoraproject debian CWE-407	7.5
2021-08-27	CVE-2021-28697	Race Condition vulnerability in multiple products grant table v2 status pages may remain accessible after de-allocation Guest get permitted access to certain Xen-owned pages of memory. local low complexity xen fedoraproject debian CWE-362	7.8
2021-08-27	CVE-2021-40153	Path Traversal vulnerability in multiple products squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. network low complexity squashfs-tools-project fedoraproject debian redhat CWE-22	8.1
2021-08-26	CVE-2021-30590	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Bookmarks in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-787	8.8
2021-08-26	CVE-2021-30591	Use After Free vulnerability in multiple products Use after free in File System API in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-08-26	CVE-2021-30592	Out-of-bounds Write vulnerability in multiple products Out of bounds write in Tab Groups in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page. network low complexity google fedoraproject CWE-787	8.8
2021-08-26	CVE-2021-30593	Out-of-bounds Read vulnerability in multiple products Out of bounds read in Tab Strip in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted HTML page. network low complexity google fedoraproject CWE-125	8.1