debian

10,127 tracked vulnerabilities.

CVE-2022-47518 HIGH
Linux Kernel < 6.0.11 - Heap-Based Buffer Overflow in WILC1000 Wireless Driver
Dec 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-3109 HIGH
Debian Linux < 5.0.3 - NULL Pointer Dereference
Dec 16, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-4283 HIGH
X.Org X Server - Use-After-Free in XkbCopyNames via XkbGetKbdByName Request
Dec 14, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-46344 HIGH
X.Org X Server - Out-of-bounds Read in XIChangeProperty Request Handler
Dec 14, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-46343 HIGH
X.Org X Server - Use-After-Free in ScreenSaverSetAttributes Request Handler
Dec 14, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-46342 HIGH
X.Org X Server - Use-After-Free in XvdiSelectVideoNotify Request Handler
Dec 14, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-46341 HIGH
X.Org X Server - Out-of-bounds Write via XIPassiveUngrab Request Handler
Dec 14, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-46340 HIGH
X.Org X Server - Out-of-bounds Write in XTest Extension via GenericEvents
Dec 14, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-23527 MEDIUM
mod_auth_openidc < 2.4.12.2 - Open Redirect via Improper URL Validation
Dec 14, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-23520 MEDIUM
rails-html-sanitizer < 1.4.4 - Cross-Site Scripting via Select and Style Tag Override
Dec 14, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-23519 HIGH
rails-html-sanitizer < 1.4.4 - Cross-Site Scripting via Allowed Tags Override
Dec 14, 2022
CVSS 7.2
EPSS 0.00
CVE-2022-23518 MEDIUM
rails-html-sanitizer 1.0.3-1.4.3 - Cross-Site Scripting via Data URIs with Loofah
Dec 14, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-23517 HIGH
rails-html-sanitizer < 1.4.4 - Denial of Service via Inefficient SVG Attribute Regex
Dec 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-23515 MEDIUM
Loofah 2.1.0-2.19.0 - Cross-Site Scripting via Image/SVG+XML Data URI
Dec 14, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-45693 HIGH
jettison < 1.5.2 - Denial of Service via Stack Overflow in Map Parameter
Dec 13, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-45685 HIGH
Jettison < 1.5.2 - Denial of Service via Stack Overflow in JSON Parser
Dec 13, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-41915 MEDIUM
Netty 4.1.83-4.1.85 - HTTP Response Splitting via DefaultHttpHeaders.set Iterator
Dec 13, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41881 MEDIUM
Netty <4.1.86.Final - Memory Corruption
Dec 12, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-23493 CRITICAL
xrdp < 0.9.21 - Out-of-bounds Read in xrdp_mm_trans_process_drdynvc_channel_close()
Dec 09, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-23484 HIGH
xrdp < 0.9.21 - Integer Overflow in xrdp_mm_process_rail_update_window_text()
Dec 09, 2022
CVSS 8.2
EPSS 0.00
CVE-2022-23483 HIGH
xrdp < 0.9.21 - Out-of-bounds Read in libxrdp_send_to_channel()
Dec 09, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-23482 NONE
xrdp < 0.9.21 - Out-of-bounds Read in xrdp_sec_process_mcs_data_CS_CORE()
Dec 09, 2022
EPSS 0.00
CVE-2022-23481 NONE
xrdp < 0.9.21 - Out-of-Bounds Read in xrdp_caps_process_confirm_active()
Dec 09, 2022
EPSS 0.00
CVE-2022-23480 CRITICAL
xrdp < 0.9.21 - Buffer Overflow in devredir_proc_client_devlist_announce_req()
Dec 09, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-23479 CRITICAL
xrdp < 0.9.21 - Buffer Overflow in xrdp_mm_chan_data_in()
Dec 09, 2022
CVSS 9.1
EPSS 0.00
Products
debian_linux 9,979 advanced_package_tool 21 dpkg 14 shadow 8 lintian 6 apt 5 devscripts 3 horde 3 reportbug 3 apt-cacher 2 aptlinex 2 cifs-utils 2 dpkg-dev 2 fsp 2 horde_groupware 2 mime-support 2 netkit 2 python-apt 2 python-dns 2 qpopper 2 xsabre 2 yubiserver 2 FreedomBox 1 adequate 1 amaya 1 apache 1 apache2 1 apt-listchanges 1 apt-setup 1 axiom 1
Quick Filters
Critical CVEs With Exploits In CISA KEV