debian

10,149 tracked vulnerabilities.

CVE-2021-26690 HIGH
Apache HTTP Server 2.4.0-2.4.46 - Denial of Service via Crafted Cookie Header in mod_session
Jun 10, 2021
CVSS 7.5
EPSS 0.65
CVE-2021-0129 MEDIUM
bluez < 5.57 - Authenticated Information Disclosure via Adjacent Access
Jun 09, 2021
CVSS 5.7
EPSS 0.01
CVE-2021-0089 MEDIUM
Debian Linux - Information Disclosure
Jun 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-33833 CRITICAL
Intel Connection Manager 1.30-1.39 - Stack-based Buffer Overflow in DNS Proxy via NAME/RDATA/RDLENGTH
Jun 09, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-33829 MEDIUM NUCLEI
CKEditor 4.14.0-4.16.0 - Cross-Site Scripting via HTML Comment Parsing
Jun 09, 2021
CVSS 6.1
EPSS 0.03
CVE-2021-26313 MEDIUM
Xen - Observable Timing Discrepancy via Speculative Code Store Bypass
Jun 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28169 MEDIUM NUCLEI
Eclipse Jetty ConcatServlet - Information Disclosure
Jun 09, 2021
CVSS 5.3
EPSS 0.78
CVE-2021-3564 MEDIUM
Linux kernel <3.13 - Memory Corruption
Jun 08, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-26260 MEDIUM
OpenEXR < 3.0.1 - Heap-Buffer Overflow via DwaCompressor Integer Overflow
Jun 08, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-23215 MEDIUM
OpenEXR < 3.0.1 - Heap-Buffer Overflow via Integer Overflow in DwaCompressor
Jun 08, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-22116 HIGH
RabbitMQ < 3.8.16 - Denial of Service via AMQP 1.0 Client Connection Endpoint
Jun 08, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-33560 HIGH
Libgcrypt <1.8.8 & <1.9.3 - Info Disclosure
Jun 08, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-22222 HIGH
Wireshark 3.4.0-3.4.5 - Denial of Service via DVB-S2-BB Dissector Infinite Loop
Jun 07, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-33054 HIGH
SOGo <2.4.1, <3.x-5.1.1 - Auth Bypass
Jun 04, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-28091 HIGH
Lasso < 2.7.0 - Improper Verification of Cryptographic Signature
Jun 04, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3468 MEDIUM
avahi 0.6-0.8 - Denial of Service via Client Connection Termination Event
Jun 02, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3546 HIGH
QEMU <= 6.0.0 - Out-of-bounds Write in vhost-user-gpu via VIRTIO_GPU_CMD_GET_CAPSET
Jun 02, 2021
CVSS 8.2
EPSS 0.00
CVE-2021-3545 MEDIUM
QEMU <= 6.0.0 - Information Disclosure via Uninitialized Memory Read in vhost-user-gpu
Jun 02, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-3544 MEDIUM
QEMU <= 6.0.0 - Memory Leak in vhost-user-gpu Device
Jun 02, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-3516 HIGH
xmllint < 2.9.11 - Use-After-Free
Jun 01, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-29505 HIGH NUCLEI
XStream < 1.4.17 - Remote Code Execution via Untrusted Data Deserialization
May 28, 2021
CVSS 7.5
EPSS 0.78
CVE-2021-33623 HIGH
trim-newlines < 3.0.1 and 4.x < 4.0.1 - Regular Expression Denial-of-Service in .end() Method
May 28, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-33620 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Response Header
May 28, 2021
CVSS 6.5
EPSS 0.80
CVE-2021-20292 MEDIUM
Linux Kernel < 5.9 - Use-After-Free in Nouveau DRM Subsystem
May 28, 2021
CVSS 6.7
EPSS 0.01
CVE-2021-31808 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Range Request
May 27, 2021
CVSS 6.5
EPSS 0.05