Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-23	CVE-2021-20316	Race Condition vulnerability in multiple products A flaw was found in the way Samba handled file/directory metadata. network high complexity samba debian redhat CWE-362	6.8
2022-08-23	CVE-2021-3670	MaxQueryDuration not honoured in Samba AD DC LDAP network low complexity samba redhat fedoraproject	6.5
2022-08-23	CVE-2021-3701	Incorrect Default Permissions vulnerability in Redhat Ansible Runner 2.0.0 A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. local low complexity redhat CWE-276	6.6
2022-08-23	CVE-2021-3702	Race Condition vulnerability in Redhat Ansible Runner 2.0.0 A race condition flaw was found in ansible-runner, where an attacker could watch for rapid creation and deletion of a temporary directory, substitute their directory at that name, and then have access to ansible-runner's private_data_dir the next time ansible-runner made use of the private_data_dir. local high complexity redhat CWE-362	6.3
2022-08-23	CVE-2021-3714	A flaw was found in the Linux kernels memory deduplication mechanism. network high complexity linux redhat	5.9
2022-08-23	CVE-2021-3763	Incorrect Authorization vulnerability in Redhat AMQ Broker 7.8.0/7.8.1/7.8.2 A flaw was found in the Red Hat AMQ Broker management console in version 7.8 where an existing user is able to access some limited information even when the role the user is assigned to should not be allow access to the management console. network low complexity redhat CWE-863	4.3
2022-08-23	CVE-2021-3827	Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. network high complexity redhat CWE-287	6.8
2022-08-22	CVE-2021-3442	Improper Input Validation vulnerability in Redhat Openshift API Management 2.9.1 A flaw was found in the Red Hat OpenShift API Management product. network low complexity redhat CWE-20	5.4
2022-08-22	CVE-2021-3659	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. local low complexity linux fedoraproject redhat CWE-476	5.5
2022-08-22	CVE-2022-2873	Incorrect Calculation of Buffer Size vulnerability in multiple products An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. local low complexity linux fedoraproject redhat netapp debian CWE-131	5.5