High

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-27	CVE-2025-1755	Untrusted Search Path vulnerability in multiple products MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's system with elevated privileges, when a crafted file is stored in C:\node_modules\. local low complexity mongodb redhat CWE-426	7.8
2025-02-27	CVE-2025-1756	Untrusted Search Path vulnerability in multiple products mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's system with elevated privilege, when a crafted file is stored in C:\node_modules\. local low complexity mongodb redhat CWE-426	7.8
2024-10-09	CVE-2024-9675	A vulnerability was found in Buildah. local low complexity buildah-project redhat	7.8
2024-08-12	CVE-2024-7006	A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. network low complexity libtiff redhat	7.5
2024-07-01	CVE-2024-6387	Race Condition vulnerability in multiple products A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). network high complexity openbsd redhat suse debian canonical amazon netapp freebsd netbsd CWE-362	8.1
2024-04-16	CVE-2022-24805	Classic Buffer Overflow vulnerability in multiple products net-snmp provides various tools relating to the Simple Network Management Protocol. network low complexity net-snmp fedoraproject debian redhat CWE-120	8.8
2024-02-15	CVE-2024-1488	A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. local low complexity fedoraproject redhat	7.3
2023-12-10	CVE-2023-5869	Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. network low complexity postgresql redhat CWE-190	8.8
2023-11-03	CVE-2023-46847	Classic Buffer Overflow vulnerability in multiple products Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication. network low complexity squid-cache redhat CWE-120	7.5
2023-11-01	CVE-2023-3972	Exposure of Resource to Wrong Sphere vulnerability in Redhat products A vulnerability was found in insights-client. local low complexity redhat CWE-668	7.8