debian

10,149 tracked vulnerabilities.

CVE-2021-38509 MEDIUM
Firefox < 94, Thunderbird < 91.3, Firefox ESR < 91.3 - XSS
Dec 08, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-38508 MEDIUM
Firefox <94, Thunderbird <91.3, Firefox ESR <91.3 - CSRF
Dec 08, 2021
CVSS 4.3
EPSS 0.02
CVE-2021-38507 MEDIUM
HTTP2 Opportunistic Encryption - SSRF
Dec 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-38506 MEDIUM
Firefox < 94.0 - UI Spoofing via Fullscreen Mode Navigation
Dec 08, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-38504 HIGH
Firefox < 94, Thunderbird < 91.3, Firefox ESR < 91.3 - Use After Free
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-38503 CRITICAL
Firefox < 94 - Firefox ESR < 91.3 - XSS
Dec 08, 2021
CVSS 10.0
EPSS 0.04
CVE-2021-44420 HIGH
Django <2.2.25-<3.2.10 - Auth Bypass
Dec 08, 2021
CVSS 7.3
EPSS 0.02
CVE-2021-42717 HIGH
OWASP ModSecurity 2.8.0-2.9.4 and 3.0.0-3.0.5 - Denial of Service via Excessively Nested JSON Objects
Dec 07, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-43784 MEDIUM
runc < 1.0.3 - Namespace Bypass via Netlink Integer Overflow
Dec 06, 2021
CVSS 6.0
EPSS 0.02
CVE-2021-4069 HIGH
vim < 8.2.3741 - Use-After-Free
Dec 06, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-44227 HIGH
GNU Mailman < 2.1.38 - Cross-Site Request Forgery via Admin Request
Dec 02, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3984 HIGH
vim < 8.2.3625 - Heap-based Buffer Overflow
Dec 01, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-4019 HIGH
vim < 8.2.3669 - Heap-based Buffer Overflow
Dec 01, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-21707 MEDIUM
PHP <7.3.33, 7.4.26, 8.0.13 - Info Disclosure
Nov 29, 2021
CVSS 5.3
EPSS 0.26
CVE-2021-28709 HIGH
Xen 3.4.0-4.12.3 - Denial of Service via Partial P2M Update Handling
Nov 24, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28705 HIGH
Xen 3.4.0-4.12.3 - Denial of Service via Partially Successful P2M Updates
Nov 24, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28708 HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28707 HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28706 HIGH
Xen 3.2-4.12 - Memory Limit Bypass via 32-bit Overflow
Nov 24, 2021
CVSS 8.6
EPSS 0.02
CVE-2021-28704 HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-38004 MEDIUM
Google Chrome <95.0.4638.69 - Info Disclosure
Nov 23, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-38003 HIGH KEV
Google Chrome <95.0.4638.69 - Heap Corruption
Nov 23, 2021
CVSS 8.8
EPSS 0.36
CVE-2021-38002 CRITICAL
Google Chrome <95.0.4638.69 - Use After Free
Nov 23, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-38001 HIGH
Google Chrome <95.0.4638.69 - Heap Corruption
Nov 23, 2021
CVSS 8.8
EPSS 0.27
CVE-2021-38000 MEDIUM KEV
Google Chrome <95.0.4638.69 - Open Redirect
Nov 23, 2021
CVSS 6.1
EPSS 0.04