High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-07	CVE-2021-33285	Out-of-bounds Write vulnerability in multiple products In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. local low complexity tuxera redhat fedoraproject debian CWE-787	7.8
2021-08-27	CVE-2021-40153	Path Traversal vulnerability in multiple products squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. network low complexity squashfs-tools-project fedoraproject debian redhat CWE-22	8.1
2021-08-07	CVE-2021-38160	Classic Buffer Overflow vulnerability in multiple products In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. local low complexity linux netapp debian redhat CWE-120	7.8
2021-08-05	CVE-2021-3580	A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. network low complexity nettle-project redhat debian netapp	7.5
2021-08-05	CVE-2021-3682	A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. network high complexity qemu redhat debian	8.5
2021-07-09	CVE-2021-3570	Out-of-bounds Write vulnerability in multiple products A flaw was found in the ptp4l program of the linuxptp package. network low complexity linuxptp-project redhat fedoraproject debian CWE-787	8.8
2021-07-09	CVE-2021-3571	Out-of-bounds Read vulnerability in multiple products A flaw was found in the ptp4l program of the linuxptp package. network low complexity linuxptp-project redhat fedoraproject CWE-125	7.1
2021-07-09	CVE-2021-3612	Out-of-bounds Write vulnerability in multiple products An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. local low complexity linux redhat fedoraproject debian oracle netapp CWE-787	7.8
2021-06-01	CVE-2021-32027	A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. network low complexity postgresql redhat	8.8
2021-06-01	CVE-2021-3516	Use After Free vulnerability in multiple products There's a flaw in libxml2's xmllint in versions before 2.9.11. local low complexity xmlsoft debian fedoraproject redhat netapp oracle CWE-416	7.8