High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-04	CVE-2021-32687	Integer Overflow to Buffer Overflow vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. network high complexity redis fedoraproject debian netapp oracle CWE-680	7.5
2021-10-04	CVE-2021-32762	Integer Overflow to Buffer Overflow vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. network low complexity redis debian fedoraproject netapp oracle CWE-680	8.8
2021-10-04	CVE-2021-41099	Integer Overflow to Buffer Overflow vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. network high complexity redis fedoraproject debian netapp oracle CWE-680	7.5
2021-09-29	CVE-2021-22946	Cleartext Transmission of Sensitive Information vulnerability in multiple products A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command line or`CURLOPT_USE_SSL` set to `CURLUSESSL_CONTROL` or `CURLUSESSL_ALL` withlibcurl). network low complexity haxx debian fedoraproject netapp oracle apple siemens splunk CWE-319	7.5
2021-09-26	CVE-2021-41617	sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. local high complexity openbsd fedoraproject netapp oracle starwindsoftware	7.0
2021-09-24	CVE-2021-2464	Unspecified vulnerability in Oracle Engineered Systems Utilities and Linux Vulnerability in Oracle Linux (component: OSwatcher). local low complexity oracle	7.8
2021-09-19	CVE-2021-40690	Information Exposure vulnerability in multiple products All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. network low complexity apache debian oracle CWE-200	7.5
2021-09-17	CVE-2021-3807	ansi-regex is vulnerable to Inefficient Regular Expression Complexity network low complexity ansi-regex-project oracle	7.5
2021-09-16	CVE-2021-34798	NULL Pointer Dereference vulnerability in multiple products Malformed requests may cause the server to dereference a NULL pointer. network low complexity apache fedoraproject debian netapp tenable oracle broadcom siemens CWE-476	7.5
2021-09-16	CVE-2021-36160	Out-of-bounds Read vulnerability in multiple products A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). network low complexity apache fedoraproject debian netapp oracle broadcom CWE-125	7.5