High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-18	CVE-2020-25709	Reachable Assertion vulnerability in multiple products A flaw was found in OpenLDAP. network low complexity openldap debian apple redhat CWE-617	7.5
2021-05-18	CVE-2021-3518	Use After Free vulnerability in multiple products There's a flaw in libxml2 in versions before 2.9.11. network low complexity xmlsoft debian redhat fedoraproject netapp oracle CWE-416	8.8
2021-05-14	CVE-2020-27833	Link Following vulnerability in Redhat Openshift Container Platform A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic links. network high complexity redhat CWE-59	7.1
2021-05-13	CVE-2021-3528	Information Exposure Through Log Files vulnerability in Redhat Noobaa-Operator A flaw was found in noobaa-operator in versions before 5.7.0, where internal RPC AuthTokens between the noobaa operator and the noobaa core are leaked into log files. network low complexity redhat CWE-532	8.8
2021-05-06	CVE-2021-31918	Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openstack 16.1 A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. network low complexity redhat CWE-732	7.5
2021-04-29	CVE-2021-20228	Information Exposure vulnerability in multiple products A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. network low complexity redhat debian CWE-200	7.5
2021-04-26	CVE-2021-3472	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 1.20.11. local low complexity x-org fedoraproject debian redhat CWE-191	7.8
2021-04-19	CVE-2021-3498	Out-of-bounds Write vulnerability in multiple products GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files. local low complexity gstreamer-project redhat debian CWE-787	7.8
2021-04-19	CVE-2021-3497	Use After Free vulnerability in multiple products GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files. local low complexity gstreamer-project redhat debian CWE-416	7.8
2021-04-15	CVE-2021-20288	Improper Authentication vulnerability in multiple products An authentication flaw was found in ceph in versions before 14.2.20. network low complexity linuxfoundation redhat fedoraproject debian CWE-287	7.2