Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-03	CVE-2021-30615	Chromium: CVE-2021-30615 Cross-origin data leak in Navigation network low complexity fedoraproject microsoft	6.5
2021-09-03	CVE-2021-30617	Chromium: CVE-2021-30617 Policy bypass in Blink network low complexity fedoraproject microsoft	6.5
2021-09-03	CVE-2021-30619	Authentication Bypass by Spoofing vulnerability in multiple products Chromium: CVE-2021-30619 UI Spoofing in Autofill network low complexity fedoraproject microsoft CWE-290	6.5
2021-09-03	CVE-2021-30621	Authentication Bypass by Spoofing vulnerability in multiple products Chromium: CVE-2021-30621 UI Spoofing in Autofill network low complexity fedoraproject microsoft CWE-290	6.5
2021-09-03	CVE-2021-39191	mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. network low complexity openidc fedoraproject debian	6.1
2021-08-31	CVE-2021-3634	Out-of-bounds Write vulnerability in multiple products A flaw has been found in libssh in versions prior to 0.9.6. network low complexity libssh redhat debian fedoraproject oracle netapp CWE-787	6.5
2021-08-30	CVE-2021-34434	Incorrect Authorization vulnerability in multiple products In Eclipse Mosquitto versions 2.0 to 2.0.11, when using the dynamic security plugin, if the ability for a client to make subscriptions on a topic is revoked when a durable client is offline, then existing subscriptions for that client are not revoked. network low complexity eclipse fedoraproject CWE-863	5.3
2021-08-30	CVE-2021-39272	Cleartext Transmission of Sensitive Information vulnerability in multiple products Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. network high complexity fetchmail fedoraproject CWE-319	5.9
2021-08-27	CVE-2021-28694	IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically means these addresses should pass the translation phase unaltered. low complexity xen fedoraproject debian	6.8
2021-08-27	CVE-2021-28695	IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically means these addresses should pass the translation phase unaltered. low complexity xen fedoraproject debian	6.8