High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-12	CVE-2022-29885	The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. network low complexity apache debian oracle	7.5
2022-05-01	CVE-2022-25647	Deserialization of Untrusted Data vulnerability in multiple products The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks. network low complexity google debian netapp oracle CWE-502	7.5
2022-04-27	CVE-2022-24735	Redis is an in-memory database that persists on disk. local low complexity redis fedoraproject netapp oracle	7.8
2022-04-11	CVE-2022-24839	org.cyberneko.html is an html parser written in Java. network low complexity nekohtml-project oracle	7.5
2022-04-04	CVE-2022-24801	Twisted is an event-based framework for internet applications, supporting Python 3.6+. network high complexity twisted debian fedoraproject oracle	8.1
2022-03-30	CVE-2022-1154	Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646. local low complexity vim fedoraproject debian oracle	7.8
2022-03-25	CVE-2021-4157	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). low complexity linux fedoraproject netapp oracle CWE-119	8.0
2022-03-23	CVE-2021-4197	Improper Authentication vulnerability in multiple products An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. local low complexity linux debian oracle broadcom netapp CWE-287	7.8
2022-03-18	CVE-2022-1011	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). local low complexity linux fedoraproject redhat netapp debian oracle CWE-416	7.8
2022-03-16	CVE-2022-24729	CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. network low complexity ckeditor drupal oracle fedoraproject	7.5