High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-03	CVE-2022-21716	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Twisted is an event-based framework for internet applications, supporting Python 3.6+. network low complexity twisted debian oracle fedoraproject CWE-770	7.5
2022-02-26	CVE-2022-23308	Use After Free vulnerability in multiple products valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. network low complexity xmlsoft fedoraproject debian apple netapp oracle CWE-416	7.5
2022-02-24	CVE-2021-44531	Improper Certificate Validation vulnerability in multiple products Accepting arbitrary Subject Alternative Name (SAN) types, unless a PKI is specifically defined to use a particular SAN type, can result in bypassing name-constrained intermediates. network high complexity nodejs oracle CWE-295	7.4
2022-02-24	CVE-2022-21824	Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__". network low complexity nodejs oracle debian netapp	8.2
2022-02-24	CVE-2022-24407	SQL Injection vulnerability in multiple products In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. network low complexity cyrusimap debian fedoraproject netapp oracle CWE-89	8.8
2022-02-24	CVE-2022-25636	Improper Privilege Management vulnerability in multiple products net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. local low complexity linux debian netapp oracle CWE-269	7.8
2022-02-18	CVE-2021-20322	Use of Insufficiently Random Values vulnerability in multiple products A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. network high complexity linux fedoraproject debian netapp oracle CWE-330	7.4
2022-02-18	CVE-2022-25314	Integer Overflow or Wraparound vulnerability in multiple products In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. network low complexity libexpat-project debian fedoraproject oracle siemens CWE-190	7.5
2022-02-17	CVE-2022-23632	Traefik is an HTTP reverse proxy and load balancer. network low complexity traefik oracle	7.5
2022-02-16	CVE-2021-3752	Race Condition vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. high complexity linux redhat fedoraproject netapp debian oracle CWE-362	7.1