High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-06	CVE-2021-31918	Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openstack 16.1 A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. network low complexity redhat CWE-732	7.5
2021-05-06	CVE-2021-3501	A flaw was found in the Linux kernel in versions before 5.12. local low complexity linux redhat fedoraproject netapp	7.1
2021-04-29	CVE-2021-20228	Information Exposure vulnerability in multiple products A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. network low complexity redhat debian CWE-200	7.5
2021-04-26	CVE-2021-3472	A flaw was found in xorg-x11-server in versions before 1.20.11. local low complexity x-org fedoraproject debian redhat	7.8
2021-04-19	CVE-2021-3498	Out-of-bounds Write vulnerability in multiple products GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files. local low complexity gstreamer-project redhat debian CWE-787	7.8
2021-04-19	CVE-2021-3497	Use After Free vulnerability in multiple products GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files. local low complexity gstreamer-project redhat debian CWE-416	7.8
2021-04-15	CVE-2021-20288	Improper Authentication vulnerability in multiple products An authentication flaw was found in ceph in versions before 14.2.20. network low complexity linuxfoundation redhat fedoraproject debian CWE-287	7.2
2021-04-05	CVE-2021-20305	Out-of-bounds Write vulnerability in multiple products A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. network high complexity nettle-project redhat fedoraproject netapp debian CWE-787	8.1
2021-03-26	CVE-2021-20271	A flaw was found in RPM's signature check functionality when reading a package file. local high complexity rpm redhat fedoraproject starwindsoftware	7.0
2021-03-24	CVE-2019-19354	Unspecified vulnerability in Redhat Openshift Container Platform 4.4 An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hadoop as shipped in Red Hat Openshift 4. local low complexity redhat	7.8