Vulnerabilities > Redhat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-02 | CVE-2021-3654 | Open Redirect vulnerability in multiple products A vulnerability was found in openstack-nova's console proxy, noVNC. | 6.1 |
| 2022-03-02 | CVE-2021-3667 | Improper Locking vulnerability in multiple products An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. | 6.5 |
| 2022-03-02 | CVE-2021-3677 | Information Exposure vulnerability in multiple products A flaw was found in postgresql. | 6.5 |
| 2022-03-02 | CVE-2021-3772 | Improper Validation of Integrity Check Value vulnerability in multiple products A flaw was found in the Linux SCTP stack. | 6.5 |
| 2022-02-24 | CVE-2021-3596 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage() in coders/svg.c. | 6.5 |
| 2022-02-24 | CVE-2021-3700 | Use After Free vulnerability in multiple products A use-after-free vulnerability was found in usbredir in versions prior to 0.11.0 in the usbredirparser_serialize() in usbredirparser/usbredirparser.c. | 6.4 |
| 2022-02-21 | CVE-2021-4115 | There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. | 5.5 |
| 2022-02-21 | CVE-2021-44141 | Link Following vulnerability in multiple products All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition. | 4.3 |
| 2022-02-18 | CVE-2022-23645 | Out-of-bounds Read vulnerability in multiple products swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface. | 5.5 |
| 2022-02-18 | CVE-2016-2124 | Improper Authentication vulnerability in multiple products A flaw was found in the way samba implemented SMB1 authentication. | 5.9 |