Vulnerabilities > Linuxfoundation

DATE CVE VULNERABILITY TITLE RISK
2021-10-04 CVE-2021-41103 Path Traversal vulnerability in Linuxfoundation Containerd
containerd is an open source container runtime with an emphasis on simplicity, robustness and portability.
local
low complexity
linuxfoundation CWE-22
7.2
2021-09-17 CVE-2021-39228 Use After Free vulnerability in Linuxfoundation Tremor
Tremor is an event processing system for unstructured data.
network
low complexity
linuxfoundation CWE-416
7.5
2021-08-03 CVE-2021-36157 Path Traversal vulnerability in Linuxfoundation Cortex
An issue was discovered in Grafana Cortex through 1.9.0.
network
low complexity
linuxfoundation CWE-22
5.0
2021-07-19 CVE-2021-32760 Exposure of Resource to Wrong Sphere vulnerability in multiple products
containerd is a container runtime.
6.8
2021-07-09 CVE-2021-36153 Unspecified vulnerability in Linuxfoundation Grpc Swift 1.1.0/1.1.1
Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote attackers to deny service by sending malformed requests.
network
low complexity
linuxfoundation
5.0
2021-07-09 CVE-2021-36154 Uncontrolled Recursion vulnerability in Linuxfoundation Grpc Swift 1.0.0/1.1.0/1.1.1
HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption.
network
low complexity
linuxfoundation CWE-674
5.0
2021-07-09 CVE-2021-36155 Classic Buffer Overflow vulnerability in Linuxfoundation Grpc Swift 1.0.0/1.1.0/1.1.1
LengthPrefixedMessageReader in gRPC Swift 1.1.0 and earlier allocates buffers of arbitrary length, which allows remote attackers to cause uncontrolled resource consumption and deny service.
network
low complexity
linuxfoundation CWE-120
5.0
2021-06-03 CVE-2021-32662 Path Traversal vulnerability in Linuxfoundation Backstage
Backstage is an open platform for building developer portals, and techdocs-common contains common functionalities for Backstage's TechDocs.
3.5
2021-06-03 CVE-2021-32661 Unrestricted Upload of File with Dangerous Type vulnerability in Linuxfoundation @Backstage/Plugin-Techdocs
Backstage is an open platform for building developer portals.
4.9
2021-06-03 CVE-2021-32660 Unrestricted Upload of File with Dangerous Type vulnerability in Linuxfoundation @Backstage/Techdocs-Common
Backstage is an open platform for building developer portals, and techdocs-common contains common functionalities for Backstage's TechDocs.
5.8