debian
10,127 tracked vulnerabilities.
CVE-2025-22119
MEDIUM
Linux Kernel - Use of Uninitialized Resource in cfg80211_dev_free
Apr 16, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-22042
MEDIUM
Linux Kernel 5.15-6.14.1 - Out-of-Bounds Write in ksmbd Create Lease Context
Apr 16, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-22040
HIGH
Linux Kernel - Use-After-Free in ksmbd Session Handling
Apr 16, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-32728
MEDIUM
OpenSSH <10.0 - Privilege Escalation
Apr 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-29769
MEDIUM
libvips < 8.16.1 - Heap-based Buffer Overflow via HEIF Save Operation
Apr 07, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-3155
HIGH
Yelp - Arbitrary Script Execution via Help Document
Apr 03, 2025
CVSS 7.4
EPSS 0.01
CVE-2025-21950
HIGH
Linux Kernel - Information Disclosure via Uninitialized Memory in pmcmd_ioctl
Apr 01, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-24201
CRITICAL
KEV
Safari < 18.3.1 - Out-of-bounds Write via Maliciously Crafted Web Content
Mar 11, 2025
CVSS 10.0
EPSS 0.00
CVE-2025-27363
HIGH
KEV
FreeType < 2.13.0 - Out-of-bounds Write in TrueType GX Subglyph Parsing
Mar 11, 2025
CVSS 8.1
EPSS 0.71
CVE-2025-24813
CRITICAL
KEVNUCLEI
Tomcat Partial PUT Java Deserialization
Mar 10, 2025
CVSS 9.8
EPSS 0.94
CVE-2025-26699
MEDIUM
Django 4.2-5.1 - Denial of Service via django.utils.text.wrap()
Mar 06, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-27516
HIGH
Jinja < 3.1.6 - Remote Code Execution via |attr Filter Sandbox Bypass
Mar 05, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-1080
HIGH
LibreOffice <24.8.5-<25.2.1 - Code Injection
Mar 04, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-26466
MEDIUM
OpenSSH - Denial of Service via Ping Packet Memory Exhaustion
Feb 28, 2025
CVSS 5.9
EPSS 0.62
CVE-2025-0838
CRITICAL
Abseil-cpp < 20250127.0 - Heap Buffer Overflow via Integer Overflow in Hash Container Sized Constructors
Feb 21, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-25475
HIGH
DCMTK - Denial of Service via NULL Pointer Dereference in dcrleccd.cc
Feb 18, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-25474
MEDIUM
DCMTK v3.6.9+ DEV - Buffer Overflow in diinpxt.h
Feb 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-25472
MEDIUM
DCMTK v3.6.9+ DEV - Denial of Service via Crafted DCM File
Feb 18, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-22921
MEDIUM
FFmpeg N-113007-g8d24a28d06 - NULL Pointer Dereference in JPEG2000 Decoder
Feb 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-26465
MEDIUM
OpenSSH 6.9-9.7 - Machine-in-the-Middle Attack via VerifyHostKeyDNS Error Handling
Feb 18, 2025
CVSS 6.8
EPSS 0.65
CVE-2025-23419
MEDIUM
F5 NGINX 1.11.4-1.26.2 and NGINX Plus R28-R31 - Incorrect Authorization via TLS Session Resumption
Feb 05, 2025
CVSS 4.3
EPSS 0.03
CVE-2025-0781
HIGH
simgear < 2020.3.19 - Unauthenticated Arbitrary File Write via Nasal Script Sandbox Bypass
Jan 28, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-21502
MEDIUM
Oracle GraalVM - Incorrect Authorization
Jan 21, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-21490
MEDIUM
MySQL Server <= 8.0.40, <= 8.4.3, 9.1.0 - Authenticated Denial of Service in InnoDB
Jan 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2024-58240
HIGH
Linux Kernel 4.13-6.1.148, 6.2.0-6.6.20, 6.7.0-6.7.8 - Use-After-Free in TLS Async Decryption Handling
Aug 28, 2025
CVSS 7.8
EPSS 0.00
Products
debian_linux 9,979
advanced_package_tool 21
dpkg 14
shadow 8
lintian 6
apt 5
devscripts 3
horde 3
reportbug 3
apt-cacher 2
aptlinex 2
cifs-utils 2
dpkg-dev 2
fsp 2
horde_groupware 2
mime-support 2
netkit 2
python-apt 2
python-dns 2
qpopper 2
xsabre 2
yubiserver 2
FreedomBox 1
adequate 1
amaya 1
apache 1
apache2 1
apt-listchanges 1
apt-setup 1
axiom 1
Quick Filters